Hi @Forrest Hoffman,


Thanks! So I think I understand correctly now. The way I understand it: If you allow external access with open federation (no black or whitelisting) then users from other orgs that have the same settings could, if they have your email address, send you chat mesages or give you a call without any way to you having to "accept" that incoming call or chat message first. However, as you say, it might be better to whitelist domains of organizations that you find trustworthy in order to make sure that only those organizations can contact users our organization. That is correct right?


Thanks for your help :)





I guess if you really