Org Admin Guides
Day-to-day operator guides for a single organization — getting around the portal, campaigns, training, autopilot, reports, users, and directory sync.
This section is for org admins — the day-to-day operator inside a single organization. If you manage multiple organizations across customers as a partner, see the MSP guides instead.
Start here
If you're new to Hook, the Getting Started walkthrough takes you from sign-in to a launched campaign in about 15 minutes, and Core concepts defines the building blocks — campaigns, templates, groups, courses, enrollments, reports, and autopilot. Once those are done, the guides below cover every workflow.
Don't see a section in your portal?
Several areas of the org portal are enabled per organization. If a guide describes a page you don't have, the feature may not be turned on for your org yet — see Navigate the org portal and contact your Hook contact to enable it.
Getting around
- Navigate the org portal — the sidebar, breadcrumbs, and the workspace switcher for moving between orgs.
- Read the org dashboard — the at-a-glance home page: metric cards, recent campaigns, training status, and autopilot.
Phishing
- Run a phishing campaign — the end-to-end four-step wizard.
- Monitor a live phishing campaign — read the campaign detail page: engagement stats, delivery details, and the enrolled-users table.
- Manage your phishing template library — browse stock templates, customize, save, and delete.
- Safelist Hook's sending domains and IPs — make sure simulations reach inboxes instead of the spam folder.
Training
- Browse the training library — explore the course catalog and build a selection.
- Assign training to groups — bulk enrollment with due dates and reminders.
- Track training progress and completion — monitor completion, find overdue learners, and export to CSV.
- Review and manage enrollment batches — browse enrollment history and edit, cancel, or retry enrollments.
Autopilot
- Understand and configure Autopilot — hands-off recurring phishing simulations and how to tune them.
- Preview upcoming Autopilot campaigns — see what Autopilot will send next, plus the IPs your IT team must allowlist.
Reports
- Browse the reports catalog — the reports hub and which report answers which question.
- Read the executive summary report — KPIs, risk assessment, and how to share with leadership.
- Run the Test Summary report — drill into a single phishing test's funnel.
- Run the Security Awareness Snapshot — a month-scoped, client-ready phishing-plus-training review.
- Review the security watchlist — identify repeat clickers and decide what to do next.
- Run the Course Enrollment report — measure completion for a single course and find overdue learners.
- Run the Group Performance report — track one group's phishing resistance over time.
- Run the Autopilot (COTM) Campaign report — a client-ready report for a managed Campaign-of-the-Month simulation.
- Automate report delivery — scheduled email of campaign / training reports to stakeholders.
Users & Directory
- View users and groups — browse the read-only roster, search, filter, and inspect detail panels.
- Sync users from Microsoft Entra — connect a directory, pick groups, preview, and confirm.
- Manage directory connections — run manual syncs, change scope, and reconnect or disconnect a directory.
- Authorize recipient domains — approve your users' email domains so simulations can be delivered.
More
- Read What's New — the in-app changelog of recent Hook product updates.
Don't see what you need?
Email support@hooksecurity.co — your question is likely the next page we'll write.
Core concepts: the building blocks of Hook
Define every core object in Hook — organizations, users, groups, campaigns, templates, courses, enrollments, reports, the watchlist, autopilot, and directory sync — and how they relate.
Navigate the org portal and switch organizations
Find your way around the org sidebar, breadcrumb header, and workspace switcher — and understand why available sections depend on feature flags and org type.