A DMARC record in Office 365 is a Domain-based Message Authentication, Reporting, and Conformance record that helps validate emails sent from your organization.
DMARC records are published as a plain text file in your domain's DNS database. They tell receiving email servers what to do with emails that don't pass authentication tests
DMARC records help prevent spoofed senders and phishing attacks. They also:
Verify your IP address against the owner of your domain
Ensure that emails you send are actually from you
Instruct receiving servers on what to do with emails that have failed authentication tests
Enable reports to be sent back to the domain owner about which messages are authenticating and why
To add a DMARC record to your domain, you can:
Log in to your Microsoft admin center
Go to Show all > Settings > Domains
Select your domain from the list on the Domains page
Click the DNS records tab and select + Add record
Fill in the fields with the following values:
Type: TXT
Name: _dmarc
TTL: 1 hour
Value: Paste the value of the DMARC record you created
Click Save
You can use different policies to define how suspicious emails are handled:
p=none: The receiving email server sends a report to an email listed in the mailto: address on the DMARC record
p=reject: The receiving email server denies and blocks unauthenticated email
p=quarantine: The receiving email server quarantines unauthenticated email
Post a Comment