Upcoming behavior change to the “DoNotRewrite” List

With the deployment of the Tenant Allow/Block List, as being the single source of truth for Tenant Allows, other mechanisms for Tenant Allows are being removed. This will give SecOps teams one place to manage all Tenant Allows.

Today, the “DoNotRewrite” list is used to Skip:

  • Wrapping URLs
  • Detonation
  • Verdicts

The intended purpose of “DoNotRewrite” is to give tenants the ability to skip the wrapping of URLs. With the deployment of the Tenant Allow Block List, it is expected that all tenant allows (ex Detonation and Verdicts) shall be managed there.

When this will happen:

In late April the entries on the Do Not Rewrite list will only skip Safe Links wrapping. After this change is made, entries on the Do Not Rewrite list will no longer skip Detonations or Verdicts in mailflow or at Time of Click. 

In late April the following capabilities will be removed from the DNR list:

  • Skip Detonation
  • Skip Verdicts

How this will affect your organization:

With this change, the “DoNotRewrite” list behavior will be changed back to its intended purpose to skip the wrapping of URLs: Learn More here.

What you need to do to prepare:

Review your “DoNotRewrite” URLs list(s) and ensure you have not added entries to it for uses other than to skip wrapping of URLs.

Message ID: MC535702


No comments yet

Leave a Reply


I've been working with Microsoft Technologies over the last ten years, mainly focused on creating collaboration and productivity solutions that drive the adoption of Microsoft Modern Workplace.

%d bloggers like this: