Forum Widgets
Latest Discussions
Emails from our custom domain ends up in quarantine
Hello, I have an issue with emails coming from one of our custom domains being detected as phishing for identity theft reason. We've got the main domain on Microsoft 365, let's call it: "domain-example.com" and the second domain on IONOS : "domainexample.com" When we receive emails from this second domain it is detected as phishing since it is a domain name very close to our main domain, therefore those emails are placed into quarantine. How do I resolve this issue? Can I indicate Microsoft 365 that this second domain is owned by our company, therefore the emails coming from this domain aren't identity theft attempts? I found how to add a domain on Microsoft 365 Admin Center but I don't know what are the consequences of this action, I want to keep my domain on IONOS and send emails from their web server. All I want is to stop emails from our company to end up into quarantine or spam folder. Thank you.
Cant access admin panel
Hi Everyone, I have done something really silly and I don't mind if I get a laugh or two, I have locked myself out of our two admin accounts due to both had 2FA on and the phone that the notifications went to sadly has been reformated without the person checking with me first, I have an E5 Licence but without being able to access the admin page I can't access support to get this resolved 😞 - I'm kind of stuck and at the moment even though we only have a few licenses (mix of E5and F3) Feeling really silly about this but if anyone has an idea of how I can resolve this I would be really grateful Joe
Partner lockout of Microsoft 365 tenant – looking for advice on next steps
Hello all, I’d appreciate some guidance from the community on a serious situation we are facing. On 12 September 2025, our Microsoft partner unilaterally locked us out of our Microsoft 365 tenant. They retained exclusive Global Administrator / Partner Delegated Admin rights, which means: All staff and directors are unable to access email, Teams, SharePoint/OneDrive, or even log into their Azure AD-authenticated workstations. Our corporate and staff personal data is now inaccessible to us as the controller. Access restoration has been explicitly conditioned on payment of a disputed invoice (not related to Microsoft licence pass-through). This raises several concerns: Operational: we are effectively paralysed. Security/IP: the partner still has exclusive access to proprietary source code and other confidential business data. Compliance: we cannot meet our GDPR/UK DPA obligations on availability of personal data while locked out. We contacted Microsoft Business Conduct on Friday evening with full details of the incident, but so far no human response has been received to those emails. Questions for the community From a Microsoft tenancy perspective – what’s the fastest/most effective way to remove a partner’s delegated admin access if they refuse to release it voluntarily? Has anyone experienced or seen a similar scenario where access was conditioned on disputed payments? Are there formal Microsoft Partner Code of Conduct provisions that directly address this type of misuse of delegated admin rights? Any practical lessons on balancing the technical fix (regaining control of the tenant) with the legal approach (injunction, regulatory notifications)? My focus is on regaining secure access, protecting data/IP, and ensuring compliance. Any experience, insight, or links to Microsoft policy/resources would be greatly appreciated.
PDF not Opening from Mail
I have just bought a new MacBook Air and upgraded to Microsoft 365. I have some important PDF files to open which needs a password to open them. When I click on the file an error message comes up saying "can't open file". Something went wrong and your file cannot be opened now. Please try again later. It is not giving me an option to enter a password and there is no menu bar showing. Have I not go my Mac set up right or can I not just click and open now. Please help a real techno phobe.People Settings Appear in the Microsoft 365 Admin Center
The Org Settings section of the Microsoft 365 admin center has a new People Settings section where you can choose properties for the Microsoft 365 profile card instead of using PowerShell. The kicker is that the old method of using Exchange custom properties to customize what appears on the profile card is being replaced with standard Entra ID properties. A migration is needed, and it’s easily done with PowerShell. https://office365itpros.com/2025/09/04/microsoft-365-profile-card-2/Need assistance: Unable to Remove GoDaddy as Partner/Reseller and Unfederate the Domain actus.law
I have been trying to resolve this issue for nearly four weeks, and been through many troubleshooting sessions and telephone calls with Microsoft Support, but this seems extremely complicated: The domain actus.law is owned by the Danish law firm Actus Law, and is registered with GoDaddy as the domain registrar. The Microsoft 365 tenant was originally created and federated by GoDaddy, who acted as the delegated administrator (via DAP/GDAP). On advice from a Microsoft Sales Advisor, Actus Law purchased a Microsoft 365 Business Standard license directly through Microsoft connected to the above tenant with the goal of managing the tenant independently through the Microsoft 365 Admin Center — without GoDaddy's involvement, beyond being the registrar. After the purchase it was impossible to manage users/licenses/domains in the Microsoft 365 Admin Center, as the domain is federated and therefore all requests always get redirected to GoDaddy. It was therefore not possible to verify the domain or create any users. I contacted Microsoft Support on 8 May, where I was told that the way forward was to delete current DNS records and remove GoDaddy's partnership privileges in the Microsoft 365 Admin Center. We therefore deleted all GoDaddy's delegated administrative privileges (GDAP/DAP) on 8 May 2025 and requested GoDaddy to end the reseller relationship. After this the support agent closed the ticket. This was handled through Support Ticket #2505081420003154. GoDaddy afterwards confirmed that they have removed all rights and that the domain is free to be unfederated. However, this did not solve the problem, since GoDaddy is still registered as partner and the domain is still federated. Therefore I am not allowed to make any changes and I always get redirected to GoDaddy when trying to manage anything in Microsoft 365 Admin Center. On 9 May I contacted Microsoft Support again and asked to disconnect the tenant from GoDaddy so I can manage everything in Microsoft 365 Support Center. This was under the Support Ticket #2505091420000046. The assigned agent tried during multiple weeks to troubleshoot and fix the problem with PowerShell commands using both MsolService and Microsoft.Graph, but always ended up getting access errors or insufficient privileges to perform the change in authorization from federated to managed. It has also not been possible to delete GoDaddy as partner. On 20 May I was asked to contact GoDaddy again to make sure that they had removed themselves as partner, and I got the following confirmation in writing from GoDaddy's Advanced Technical Support: "The Microsoft 365 organization for actus.law is no longer associated with GoDaddy. You can now reach out to Microsoft directly and receive support for a password reset for any admin user you need to access, or any other support issues. NOTE: If the domain is still set to use GoDaddy’s email login system you will need to ask Microsoft to “un-federate” the domain." On 21 May I explained GoDaddy's response in an email to the assigned agent, but now the agent simply stopped responding to my emails. I sent a reminder after 5 days, but did not get any response. On 28 May I called Microsoft Support and was assigned a new agent. That agent told me to contact GoDaddy, as it seems they still have visible GDAP, and only GoDaddy can remove that. Then the agent closed the ticket. I tried to contact GoDaddy afterwards, but they told me that the reseller relationship/GDAP was completely removed from GoDaddy's side on 8 May 2025 and all changes have propagated. However, since all GDAP/DAP had already been deleted at that point (which was done on 8 May, see above under number 4), GoDaddy could not remove it in Microsoft's systems according to the normal procedure so it is correctly reflected in the Microsoft 365 tenant. So they asked me to contact Microsoft Support again and explain the situation. WHAT I WANT TO ACHIEVE: I want GoDaddy completely removed as partner/administrator from my tenant and the domain actus.law to be "managed" and not "federated", so I can manage everything directly in the Microsoft 365 Admin Center and use my Microsoft 365 Business license. CURRENT STATUS: GoDaddy says everything has been removed on their end and that only Microsoft can now unfederate the domain. Microsoft Support says GoDaddy still needs to remove DAP/GDAP — but I cannot see their DAP/GDAPS anywhere in the Admin Center, and GoDaddy says they’ve already done it. Does anyone have an idea of what to do in this situation? I would appreciate any help, I feel completely stuck, and I am unable to set up any users or mails 😒
Remove domain and recover licence.
I have a very small business (sole property) and I recently hired a sales employee. I bought a business basic licence with the firm Combell that hosts my website and basic mailboxes. When activating 365 I was asked to make a tenant and link my domain with that tenant. I now want to go back to the basic mailboxes as It don't need the 365 environment. Combell states that I can't do this when I want to use the same domain..This seems strange to me as I own the domain, not Microsoft. Kind regards Kris
Unable to whitelist quarantined emails
We have an email that is being constantly quarantined from a webform. The email comes from the email of the web form server, but is spoofing an internal address in our tenant by design. The email keeps getting blocked, and nothing we've tried as far as transport rules, whitelist additions, etc has been able to discernably affect this. There is a option to create a tenant allow list entry but the maximum duration is 45 days. We need a way to reliably whitelist an email indefinitely.
