The Exempt list (also referred to as the Trusted Domain list) allows System Admins to specify domains and individual email addresses that are exempt from the governance policies on the Secure External Access page in Admin Center.
USM Content
Create an Exempt list
- Sign in to Admin Center.
- Select the Menu icon and navigate to Settings > Secure External Access.
- Under Advanced Settings, select Create sheet on either of the following:
- Exempt domains
- Exempt email addresses
Enabling an exempt list initiates the creation of a sheet with specific columns. All System Admins have access to this sheet.
Learn more about governance policies for external collaborators.
Exempt list sheet
System Admins can only add, edit, and delete rows on the sheet. The sheet contains the following columns:
| Column name | Description |
|---|---|
| Domains/Emails allowed to share | Lists the domain/email address that are allowed to share content with. |
| Exempt from Corporate Account Requirement | A checkbox that, when marked, exempts the domain/email address from requiring corporate account login to access shared content. |
| Exempt from MFA Requirement | A checkbox that, when marked, exempts the domain/email address from the requirement to use MFA for accessing shared content. |
| Modified By | Indicates the last user who made changes to the row, providing accountability and tracking for updates. |
| Modified On | Shows the date and time when the last modification was made to the row, helping to maintain a timeline of changes. |
| Created By | Identifies the user who originally created the entry in the sheet, establishing the origin of the data. |
| Created | Displays the date and time when the entry was created, giving a historical context. |
| Notes | An open field for any additional information, comments, or rationale behind the domain/email address status. |
Edit the exempt list
To add new domains or email addresses to the Exempt list, enter them in the Domains/Emails allowed to share column and use the checkbox columns to indicate if the entity is exempt from the policies.
Notes
- Governance policies apply to users who aren't part of any validated domain in the plan that enabled the policy, or any domain/email address mentioned in the Exempt list for these policies
- Existing System Admins are responsible for granting new or future System Admins access to the Exempt list sheet
- Updates (new exemption entries) to the Exempt list may take up to three minutes to apply
FAQs
Are there any domains automatically added to the Exempt list?
Yes. All verified domains within the plan are automatically exempted from both the Require work accounts with SSO and Require MFA policies, as users from these domains are treated as internal users to the plan.