user.3AEuBpAOr2

Improvements to DNS Authentication Policies

Blog Post created by user.3AEuBpAOr2 Expert on Mar 2, 2017

New Enhancement Release

Mimecast will be releasing a new set of policies and features for our DNS Authentication policies, that will begin rolling out to customers on Monday 13th March 2017 in the following order.

 

  • Customers hosted in South Africa on Monday 13th March 2017
  • Customers hosted in UK and Jersey on Tuesday 14th March 2017
  • Customers hosted in US and Australia on Friday 17th March 2017

 

The following new policies and features will be included in the DNS Authentication policy update:

 

  • Separate Inbound and Outbound DNS Authentication policies:
    • Inbound DNS Authentication Checks: This policy contains configuration relating to checks performed against inbound messages. Administrators will have the ability to configure the following options within the newly added policies.
      • SPF: Addition of 5 new check results (None, Neutral, SoftFail, PermError, TempError), which support the following actions to be configured Reject, Ignore Auto Allow or Permitted Sender entries, Take no action.
      • DKIM: Administrators will be able to enable inbound DKIM checks to validate the DKIM signature of inbound messages if it has been applied by the message sender. This check supports the following results, None, Fail, PermError and TempError and the following actions Reject, Ignore Auto Allow or Permitted Sender entries, Take no action.
      • DMARC: Administrators will be able to enable inbound DMARC checks which confirm the validity of the inbound messages using SPF and DKIM checks. This check supports the following results, None, Fail, PermError and TempError and the following actions Reject, Ignore Auto Allow or Permitted Sender entriesHonour DMARC Record and Take no action.
    • Outbound Signing: This policy contains the configuration for enabling Outbound DKIM signing only and has not changed.

Customers that have already configured DNS Authentication policies will have their existing configuration migrated to the new policies and definitions automatically.

Supporting documentation that includes, Best Practice Guides, Policy configuration and guidance around securing uk Government email using Mimecast's DNS Authentication policies, will be published on the evening of Monday 13th March 2017 to coincide with the deployment of the new features.

Outcomes