For the latest information on this subject, please see our newer blog post: Announcing General Availability of Inbound SMTP DANE with DNSSEC for Exchange Online.
Inbound SMTP DANE with DNSSEC is no...
Updated Jan 28, 2025
Version 6.0
Blog Post
3 MIN READ
Announcing Public Preview of Inbound SMTP DANE with DNSSEC for Exchange Online
"February 2025 – Mandatory Outbound SMTP DANE, set per-tenant/per-remote domain" - This looks like a typo, Outbound was already set in 2022-23 without any action from the admins. Are you talking about 'Mandatory Inbound in 2025', or this is a new feature being introduced to allow more control to relax DANE if needed for Outbound emails.
Releasing: Outbound SMTP DANE with DNSSEC - Microsoft Community Hub
As an Exchange Online customer, you don't have to do anything to reap the benefits of this enhanced email security for outbound email. It's built into the system and once enabled over the coming weeks it will be on by default for all Exchange Online customers.
If an email sent from Exchange Online is blocked, the resolution MUST BE implemented by an admin of the receiving domain. An Exchange Online admin cannot perform any remediation.
Because of this, tenant-level exceptions or opt-out won't be available.