TDMARC is an analytical tool that complements the Simple Mail Transfer Protocol (SMTP) by monitoring all three of the standard email authentication protocols namely SPF, DKIM and DMARC. It offers a number of features to secure your email domains against forgery and advanced email-based attacks like spamming, spoofing, brand impersonation, BEC, etc.
TDMARC offers the Smart DMARC feature that makes monitoring and securing your domains extremely easy and hassle-free. When you secure your email domain with TDMARC, it provides you with a unique CNAME. To use the dynamic Smart DMARC feature, you need to update this CNAME on the DNS.
The CNAME is generated based on your existing DMARC record. In case your domain does not have an existing record, TDMARC creates a basic DMARC record for your domain. Applying the provided CNAME record will not affect your existing email flow in any way. This CNAME will just add TDMARC’s system-generated email IDs to your DMARC record for receiving DMARC reports.
You can use the Smart DMARC feature to change your domain’s SPF alignment, DKIM alignment and DMARC policies and sub-policies from the dashboard itself. This saves you the time and effort of manually changing these settings on the DNS and proves to be really helpful if you are managing multiple domains.
How to Use Smart DMARC?
To use the Smart DMARC feature, follow the steps given below:
Step 1: Go to the TDMARC Dashboard and select ‘Smart DMARC’.
There are a number of things you can do using the Smart DMARC feature, such as:
It lets you change your domain’s sub-policy. The sub-policy that you choose applies to all your domain’s sub-domains. You can choose between None, Quarantine and Reject. You can also select ‘Same as Parent’, under which the sub-policy will automatically switch to whatever policy you have chosen.
You can easily change the DKIM and SPF alignment of your domain with a single click
You can choose whether or not you wish to receive the aggregate report showing the details of the emails sent from your domain.
It lets you choose if you want to receive the forensic report showing the details of your domain’s outbound emails that fail any authentication mechanisms. You can also choose the circumstances under which you would like to receive the report. It gives you four options to choose from-
- Report if all mechanism fails
- Report if one mechanism fails
- Report DKIM failures
- Report SPF failures
You can also change the Policy Application Percent, which refers to the percentage of outbound emails your stated DMARC policy applies to.
Once you have made the required changes to your domain’s DMARC record, you can just click on ‘Save Record’ to save all the changes.