 This comes from Christian, not me, somebody else. Are there any Outlook 365 sys admins in here that can settle debate? We've got a company email account support app that needs to forward to one external Gmail address. So leave a copy within that inbox. The IT department is telling our boss external forwarding is a huge security issue. I suspect that the IT company just doesn't wanna turn on the allow individual inbox forwarding. And we suspect that's maybe because he's stuffing the license. What are your thoughts here? One, is simple forwarding while leaving the local copy in the inbox really a big security issue that a simple non-government company would have to worry about? And two, is it possible that they are reselling the same license for multiple companies on the same box? The answer to that is are you ready for it? It depends. Ah, it depends. As far as general forwarding outside of your room, outside of your organization as just a rule of thumb, particularly automatic forwarding. There are a couple of things that get involved with that. The first of course, as he mentions there, security information, you could be leaking stuff out to people who you think are one thing or whose positions change or God only knows what and they can be taking that information and doing something with it. So that's the one hand that you have to deal with with that sort of a thing. Another thing and the other reason that back in the old days it was suggested to kill auto forwarding is vacation responses of all things. You hand goes, go off and you send you an email or some automatic thing sends off an email to an email address someplace outside the organization. A side person has got his vacation response turns on. Oh, I'm sorry, I'm not here. You know, call me on such and such a day. Well, that goes back to the first email server and now it's, oh, but I'm in the vacation response myself or I didn't get this or something didn't work. So it sends a thing back and you get into this nasty little loop that can bring an email server down in no time. So that was the big reason that they originally turned it out of course, as security progresses and the lack of things and the intent of people to try to glean information. And yes, it's an important thing to not have forwarding turned on, but further to your question, turning on a single or several single sources to let's say it's a specifically known inbox and you have got Google security on their end and your security on your end and you're mailing it to an inbox that is not going to unfer for any reasonable reason reject your email and start some kind of a loop like this. Then it's perfectly simple as as to whether the what your IT people are doing, that's kind of up to them. I can appreciate the fear of not turning on general auto forwarding to the internet, but for a specific use case, if it's a business type of the thing, there's no reason not to.