When emails are sent across the internet there is always a trust involved that they are in fact coming from who they say they are. Now we all know that is the World today there are plenty of people out there that want to spoof, or forge, emails so they look like they are coming from somebody else. Particularly in phishing attacks and other malicious activity. We need to make sure that our Microsoft 365 tenant is able to mitigate as many of these things are possible when it is sending emails.
This is where the SPF, DKIM and DMARC come in, as when configured completely, correctly and all together, they provide a solid way of making sure that emails you send do not end up in peoples junk folder. And that emails that are sent, trying to spoof your domain, are rejected by other mail servers as they did not come from you.
So how do we do all this? Not a problem, I have provided here a video tutorial on exactly how to;
Configure SPF – Sender Policy Framework
Configure DKIM – Domain Key Identified Mail
Configure DMARC – Domain-based Message Authentication, Reporting and Conformance
Also I show you how to use tools available on the internet via your browser to check the emails that you are sending and confirm that all three are setup and configured correctly.
Take a look through the video, it’s only 20 mins long, but does show you everything you need to know.
Also remember to check out the M365 Discovery Tool which you can find from the front page and also to subscribe to the YouTube channel. I provide the scripts for the M365 Discovery and the OneDrive Reporting Tool free of charge when you subscribe to the channel as I appreciate that very much.
Mark – The Cloud Geezer