Select Page

Exchange Online and Remote Domain

Exchange Online and Remote Domain

This article talks about the importance of configuring Exchange Remote Domain, both on Exchange on-premise and Exchange Online, to control the format and type of email messages exchanged between hosted mailbox users and on-premise mailbox users.

What is Exchange Remote Domain?

It is a feature in Microsoft Exchange that allows IT Admins to control both the type and format of emails exchanged with external remote domains.

Suppose we are dealing a lot with company, and we want them to see our internal Out Of Office OOF messages, and not the external ones. Well, we can configure that domain as a remote domain in Exchange, and configure that remote domain Set-RemoteDomain  so that Exchange will send the internal OOF message and not the external one for that remote domain.

Moreover, suppose that your company don’t want people to auto forward emails to external domains. If your company cares about a specific partner like domain, then you can configure a remote domain for, and allow forwarding emails only to that domain.

By default, there is a default remote domain in each Exchange organization called (*). It controls how we, as Exchange organization, deal with all external domains to which there is no specific remote domain defined.

Things become interesting when you are migrating to Office 365 and you are in a hybrid mode. You will have to domains to care about (, and Since those domains are related to your Office 365 environment, you should consider them trusted, and treat mailboxes in Office 365 the same way you treat your on-premise internal mailboxes. This is where remote domains might help.

So, we shall create two remote domains in our Exchange on-premise setup for Office 365 domains, and relax the settings, like allowing forwarding emails, showing the internal Out Of Office message, and also enable the “voting buttons” by enabling a feature called TNEFE (Transport Neutral Encapsulation Format). From the other side, we shall do the same. In Exchange Online we shall create a remote domain for and relax the settings.


Usually the Hybrid configuration wizard will create a remote domain on our Exchange on-premise for, so we only need to create a remote domain in Exchange on premise for in addition.

Also, we need to update the SMTP outbound connector [ the connector for emails going to Office 365 name space] from our Exchange on-premise to include in addition to

Let us configure the remote domains using Set-RemoteDomain  to match the following configuration:

Finally, we need to use Set-RemoteDomain to configure both and remote domains as shown in the below figure:

Exchange Online and Remote Domain 1

Now going to Exchange Online, we shall create remote domain for with similar configuration.

Exchange Online and Remote Domain 2

The most important settings are to consider are listed below. Make sure you match the settings in the previous figure with what you have:

  • TNEFEnabled
  • AllowedOOFType
  • TrustedMailInboundEnabled
  • TrustedMailOutboundEnabled
  • IsInternal

Final Thoughts

It is so important to make sure your Office 365 users and on-premise users do not feel any difference when exchanging emails. To them, they have a corporate mailbox, and it does not matter to them whether the mailbox is hosted in Office 365 or on-premise mailbox. To do that, you need to carefully configure Exchange remote domains as explained in this blog post.



About The Author

Ammar Hasayen

Ammar is a digital transformer, cloud architect, public speaker and blogger. He is considered a trusted advisory with the ability to quickly navigate complex multi-cultural organizations and continuously improve and motivate cross-functional teams to achieve higher productivity, collaboration, revenue gain and cross-group knowledge sharing. His contributions to the tech community helped him get awarded the Microsoft Most Valuable Professional. Ammar appears in a lot of global conferences, and he has many publications about digital transformation and next generation technologies.

Leave a reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Hi, I’m Ammar Hasayen


About Me

Cloud Architect | Cybersecurity | CISSP | Microsoft MVP | Pluralsight Author | Book Author | International Speaker | World Explorer | @ammarhasayen


LinkedIn Profile

My Pluralsight Course

Speaking at Microsoft Ignite Dubai

Ammar Hasayen Speaker Ignite

Pin It on Pinterest