Tenor Domain Whitelisting Guide
What is Domain Whitelisting?
Domain whitelisting is the process of telling your organization’s security tools (like firewalls, secure browsers, or email filters) that a specific website or platform is trusted and should be allowed through.
If Tenor is not whitelisted, users may run into issues accessing the platform, such as blocked pages, login errors, or blank screens — especially in organizations that use tools like Mimecast’s Secure Browser Isolation, Zscaler, or Cisco Umbrella.
Why Does Whitelisting Matter for Tenor?
To ensure your team can:
- Log in without issues
- Access role-play scenarios and the AI Coach
- Receive Coach messages
- Use features like the My Path homepage and reporting dashboards
…it’s critical that Tenor’s domains are whitelisted before or during onboarding.
What Should Be Whitelisted?
Please ask your IT or Security team to whitelist the following domains:
✅ app.tenorhq.com
✅ app.tenorhq.com/login
✅ tenorhq.com
Note: If your org uses a secure browser (e.g., Mimecast), you may also need to disable isolation or inspection for these domains to ensure full functionality.
When to Bring This Up
We recommend bringing up whitelisting to your IT/Engineering/Infosec teams during your Tenor onboarding or implementation phase — especially if:
- Users report being unable to log in or view content
- Your org uses strict web filtering or secure browsers
- You're launching Tenor in a healthcare, finance, government, or enterprise tech setting
IT Checklist
Share this checklist with your IT/Engineering/Infosec teams:
- Confirm if any security filters (e.g., Mimecast, Zscaler, proxy settings) are in place
- Add the listed Tenor domains to your allowlist
- Ensure SSL inspection is disabled for these domains if needed
- Test login and scenario playback after whitelisting
Need Help?
If your team continues to experience access issues after whitelisting, reach out to Tenor Support (support@tenorhq.com) and we’ll help troubleshoot!