Link to home
Start Free TrialLog in
Avatar of Charles Hurst
Charles Hurst

asked on

DKIM & DMARC Implementation Confusion

Hi,

We are looking to implement DKIM and DMARC, we already have SPF enabled and working.

I understand DKIM and DMARC to quite a good level, however one thing I do not seem to be able to find a clear answer on is implement steps, by this I mean the process of rolling this out (mainly order of DNS changes);

I guess that with DKIM, as long as its not enabled on your outgoing smarthost then you can apply the public DNS record and it is simply ignored by all as the Email header has not been modified?

However with DMARC if a DMARC record exists in your DNS, even with DKIM disabled/deactivated does the DMARC record get quried by your recipients? I have read that some companies use DMARC with only SPF so I assume the answer is Yes it does impact your Emails even with DKIM disabled.

We have a number of third parties so we are trying to align all our DKIM DNS records before activating.

Thanks
ASKER CERTIFIED SOLUTION
Avatar of Rajkumar Duraisamy
Rajkumar Duraisamy
Flag of India image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Charles Hurst
Charles Hurst

ASKER

Thanks Rajumar,

So DMARC will sit there quite happily just with SPF until DKIM is enabled.

Is there any DMARC settings which would case this to fail, I know there is obviously a number of options you can set in the record.
Thanks Jackie,

That link is helpful... even if we rollout DMARC with p=none and DKIM checks fail the Emails will still be deliveried so we can rollout this way and change at a later date when we are ready.

Thanks
Thanks for the help
Correct.

Only DKIM is a little bit tricky to setup. DMARC is pretty straightforward.