Hi @cristinapalomino,
Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM) are email authentication mechanisms that help to prevent email spoofing and phishing. SPF verifies the sender's IP address, while DKIM verifies the sender's domain name.
You are experiencing email authentication issues with SPF and DKIM for your tenant's email domain. This means that some of your emails may be failing SPF and DKIM checks, which can lead to your emails being blocked or marked as spam.
To fix these issues, you need to ensure that your SPF and DKIM records are correctly configured. You can do this by following these steps:
- Check your SPF records. Make sure that your SPF records include all of the IP addresses that are authorized to send email on behalf of your domain. You can use a tool like the Microsoft 365 Domain Record Checker to test your SPF records.
- Check your DKIM records. Make sure that your DKIM records are correctly configured and that the DKIM signature in your email headers is valid. You can use a tool like the DKIM Signature Checker to test your DKIM records.
- Configure your DMARC policy. DMARC is an email authentication protocol that allows you to specify what should happen to emails that fail SPF and DKIM checks. You can use the DMARC Record Generator to create a DMARC record for your domain.
Check DNS Configuration: Review your DNS records for the domain and ensure they are accurate and up-to-date. Make sure that your DKIM and SPF records are correctly published.
Once you have made the necessary changes to your SPF, DKIM, and DMARC records, you need to monitor your email authentication results to ensure that your emails are passing all of the checks.
Here are some additional links for reference:
Please click Mark as Best Response & Like if my post helped you to solve your issue.
This will help others to find the correct solution easily. It also closes the item.
If the post was useful in other ways, please consider giving it Like.
Kindest regards,
Leon Pavesic
(LinkedIn)
