Hi Cameron,
Thanks for the great reply!
My apologies, I totally failed to mention that this issue is only impacting specific users / email accounts in our FedRAMP Org. Thankfully some of our users are having no issues receiving these emails. Also, support has stated they see us getting suppressed within AWS, but I guess since it isn't being suppressed within our own FedRAMP Org subdomain, it is much more challenging to determine how to get our accounts "unsuppressed" for lack of a better word.
It seems to be something directly related to the parent email domain that all platform level email notifications come from (to which of course we cannot adjust configuration or change anything on our end)
We have also checked internally with our email team and when we look at a user that is successfully receiving these notifications, we can clearly see email traffic being sent from the FedRAMP region (us-east-2). When we check other accounts that are not receiving these emails, we see no attempted traffic to those users from that same region. So it really seems that the outbound email traffic isn't making it out of Amazon SES to us.
Sorry for not mentioning this before, the info above probably changes the potential root cause. Does the above info possibly trigger any new ideas or suggestions for us to look at? :)
------------------------------
Shane Jenkins
IT Sys Admin Mgr
------------------------------
Original Message:
Sent: 04-03-2026 09:07
From: Cameron Tomlin
Subject: Anyone experienced email account suppression issues with a Genesys Cloud Parent Level domain?
Hello Shane,
Based on the issue described, this appears to be related to email filtering at your organization's gateway rather than a Genesys Cloud configuration problem. Since emails from your FedRAMP subdomain and other AWS SES sources are being delivered successfully, but messages from the parent domain @us-gov-genesys.cloud are not, it strongly suggests that your organization's email security tools are blocking or filtering that specific domain. The most effective first step is to work with your IT or security team to allowlist the relevant sender addresses or the entire domain, and to confirm that SPF, DKIM, and DMARC authentication checks are being handled correctly. Misalignment or strict enforcement of these authentication policies can cause legitimate emails to be rejected or routed to spam.
Additionally, your team should review any suppression or quarantine lists to ensure the domain or its senders have not been previously flagged due to bounces or spam reports. Checking email gateway logs, firewall rules, and security policies will help identify whether messages from the domain are being actively blocked. It's also helpful to continue working with Genesys Support by providing any available rejection logs, bounce-back messages, or error codes to assist with deeper analysis. Overall, the behavior points to an internal filtering rule, and your email administrators should be able to resolve it by identifying and updating the appropriate policies.
Hope this helps!
------------------------------
Cameron
Online Community Manager/Moderator
------------------------------