- Enforcing DMARC means that you need to have SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) set up beforehand.
- To set up DMARC on your custom domain, you need to make sure that your Office 365 account is connected to your domain and verified
- Before configuring your DMARC records, please go to your domain registrar and go to your DNS administrator. DMARC policies are generally formatted as a TXT file. To create one, add a new TXT file to your DNS records with the following information.
- To change the TTL setting for your voter registration, you may need to choose your domain registrar's setting and set it as 1 hour, 60 minutes, or 3600 seconds.
- The value field is the place where you will gain knowledge of a DMARC record.
- None (p=none): The none policy asks the receiving server to treat the email messages as if there is no DMARC authentication policy in place, but you’ll still get DMARC reports.
- Quarantine (p=quarantine): The quarantine policy asks the receiving server to receive the email anyway, but separates it from others. This typically means that the email will land in a spam folder.
- Reject (p=reject): The reject policy asks the receiving server to reject the email from landing in any inbox or folder.
Securing Office 365 With DMARC: A Step-By-Step Guide
In the modern digital landscape, cyberattacks have become increasingly common and sophisticated. Businesses of all sizes have a vested interest in safeguarding their data, which is why it is essential to understand the importance of setting up a DMARC (Domain-based Message Authentication, Reporting & Conformance) record. A DMARC record can help protect businesses from phishing attacks in Office 365, which can have devastating consequences.
In this blog post, we will cover the steps necessary to add a DMARC record to an Office 365 account. We'll discuss the importance of DMARC and explain the process of setting up a record to prevent phishing attacks in Office 365.
We'll also provide helpful tips for maintaining and strengthening your security measures. By the end of this blog post, you should be equipped with the knowledge and resources necessary to add a DMARC record to your Office 365 account and increase the security of your organization.
Setting Up Your DMARC Record On Office 365
A few notes before you begin
1. Navigate To The DNS Manager
2. Select The DMARC Policy
Your DMARC policy defines the treatments or actions you happen to look for in emails that fail authentication tests.
The DMARC policy is stored in the P tag and is a required element. There are three types of policies: to choose from.
If you do not have DMARC reports set up, you should start with none. It allows you to collect the trailing 505 section of your email record and generate a monitoring record for common issues.
3. Add An Email Address To Which Reports Can Be Sent
The aggregate reports sent daily contain summary information of the email traffic, such as when the message was sent, the sender's IP address, and the results from authentication tests. Use the rua tag to specify where to send these reports.
Besides survey results, you might also discover failure or forensic reports from other DMARC sources. However, these kinds of reports are no longer used, as it has little use compared to aggregated reports, and can be quite dangerous.
4. Create The TXT Record Value
To create the TXT record, all you need to do is combine the previous components we’ve discussed in the “value” field.
Even when you're not overly concerned with the reauthentication tag, it's still quite vital that you establish your very first DMARC record. It will permit you to view aggregate reports. These reports contain important data you need to collect when you establish your first DMARC document. You should be capable of gaining access to your first DMARC report within 72 hours after uploading this record.
In summary, DMARC is an effective tool to protect your organization from phishing attacks, and it is fairly simple to set up and configure in Office 365. It is important to understand the available settings and ensure that your DMARC policy is configured properly. Implementing DMARC is an essential step in creating a secure Office 365 environment and will help protect your organization from malicious actors.