Forum Discussion
Solved
Whitelist DocuSign Emails
What is the correct approach to whitelist DocuSign emails? Some users in our org report that those emails too often find their way into junk. DocuSign has all the info you need: https://www.docusign.com/trust/security/esignature (non-Microsoft link).
- There are a lot of variables in that question. If DocuSign is using your email address for the messages, you can configure SPF to include them. If not you can create a transport rule and set the messages to a -1 SCL or add an allow list in the spam filter for their domain. If it's EXO/EOP you can submit the messages to Microsoft as known good and they can investigate why they are being captured and moved to the junk mail folder and hopefully fix the issue
2 Replies
- There are a lot of variables in that question. If DocuSign is using your email address for the messages, you can configure SPF to include them. If not you can create a transport rule and set the messages to a -1 SCL or add an allow list in the spam filter for their domain. If it's EXO/EOP you can submit the messages to Microsoft as known good and they can investigate why they are being captured and moved to the junk mail folder and hopefully fix the issue
- Thank you, Dan! DocuSign is not spoofing our mail, they have a dedicated address. The messages are passing the quarantine, just some users get them into their Outlook Junk Folder. But not all users, and that's strange. I checked the Outlook Junk filter, and neither whitelist nor blacklist entries exists at user level. I think -1 SCL option is the best way to go.
