Solved – WordPress / Gravity Forms and Office 365 Not Receiving Emails

We had a customer move their email to Office 365. They realized they weren’t getting emails from the website anymore. Three people in the company with the same domain name in their email ( ie: ) were included in the contact us form weren’t getting the emails anymore.

The site was WordPress and they were using Gravity Forms for the contact us form. I added my personal email and I could get the email, but the customer didn’t.  I eventually discovered the email was going into the “Junk” box of their Office 365 account. I needed to “whitelist” the email that was used in the Gravity Form form. That was “”.

What eventually solved everything was “whitelisting” their domain in Office 365. I had to go into their Office 365 account as the Admin. Go to the Exchange area.


Select Spam Filter in the Protection menu.


Edit the default spam filter.


Lastly, add the domain to the allow lists.



I hope this helps someone else out there…



  1. Thanks for solving my problem! I am using Contact Form 7, not Gravity Forms.
    I had tried clicking the “Junk mail->Never block this sender” in Outlook but that didn’t work. Your solution worked.
    I took it one step further and only whitelisted the “” address rather than the whole domain, and that seems to work too.

  2. You are my savior of the year! This has literally taken hours on the phone with Flywheel and GoDaddy support trying to figure it out. Client had marked the senders as safe in the Outlook desktop app settings, but neither of us thought to do so in the Admin center. Thank you so much for taking the time to write this!

  3. If you send one to another domain ( does it get through there? Does another email address with the same domain get through? Were you able to whitelist the domain in their spam filter?

  4. I’m leaving this here in case someone runs into this in the future. Do not EVER whitelist your own domain name in O365. A common tactic is to spoof the organization’s domain, and if you put in a whitelist entry for your own domain, you will be letting that spoof mail through as well. The advice in this article will open you up to phishing attacks. This is a serious vulnerability. Whitelist the IP address of the website instead.

  5. Thanks for adding your comment. Avoiding any Phishing attempts should be considered first. Thanks for the advice on adding IP versus Domain.

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

This site uses Akismet to reduce spam. Learn how your comment data is processed.