Documentation

Auth settings

The Auth settings page allows configuring SPF, DKIM, and DMARC verification, per scope.

These settings are useful for detecting spoofing attacks - where attackers pretend to send emails from a different address - however, legitimate users may have their email servers misconfigured and/ or without proper authentication mechanisms.

Please note that these settings are related to the Safe Whitelist functionality (Whitelists) and the Anti Spoofing functionality (Anti Fraud).

For more details on these protocols, read:

DMARC analyzer / SPF (URL: https://www.dmarcanalyzer.com/spf/)

Dkim.org (URL: http://www.dkim.org/)

Dmarc.org (URL: http://dmarc.org/)

After selecting the scope, the following options are available:

Verify SPF: You can activate this option and then decide to Quarantine, Discard or Tag if messages have the Fail or Soft Fail return verification. Please note that SPF alignment compares the SENDER (SMTP Mail From) with the HEADER FROM.

Check DKIM Signing: You can activate this row and then decide to Quarantine, Discard or Tag if messages return Fail on DKIM verification. Please note that DKIM must be aligned (to the domain or subdomain of the sender) with the HEADER FROM.

Verify DMARC: You can activate this option and then decide to Quarantine, Discard or Tag if DMARC fails and policy is set up to either p=quarantine or p=reject.

When finishing configuration, click "Update Settings" to save all settings. You can click on "Recommended settings" to apply the optimal definition for the platform.