cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

DKIM Without Revealing onmicrosoft.com Tenant Name?

Pejmon
Copper Contributor

‎Dec 08 2022 09:23 PM

‎Dec 08 2022 09:23 PM

DKIM Without Revealing onmicrosoft.com Tenant Name?

An organization that has a need to configure DKIM is concerned about publicly/externally revealing their M365 tenant name. Is there any method to configure Exchange Online DKIM to use a more global CNAME rather than an org's xyz.onmicrosoft.com tenant name?

 

(e.g. domain widget.com and tenant contoso.onmicrosoft.com not using selector1-widget-com._domainkey.contoso.onmicrosoft.com and instead using something like selector1-widget-com._domainkey.widget-com.mail.protection.outlook.com)

Labels:
1,298 Views
0 Likes
4 Replies
Reply
4 Replies
Vasil Michev

‎Dec 08 2022 11:55 PM

‎Dec 08 2022 11:55 PM

Re: DKIM Without Revealing onmicrosoft.com Tenant Name?

Everyone that knows your domain name can lookup the default .onmicrosfot.com domain as well, not sure why that worries you.
0 Likes
Reply
Pejmon

‎Dec 09 2022 10:03 AM

‎Dec 09 2022 10:03 AM

Re: DKIM Without Revealing onmicrosoft.com Tenant Name?

@Vasil Michev not necessarily. Especially if the domain name added to M365 is different from your tenant name. Unless someone external receives a SharePoint Online link, there is not much to go off of to determine the tenant name. With some work, one can even change the SPO tenant name too.

 

Is there an unauthenticated Microsoft Graph method or another way to deduce the tenant name that I am not aware of? 

0 Likes
Reply
Vasil Michev

‎Dec 10 2022 08:55 AM

‎Dec 10 2022 08:55 AM

Re: DKIM Without Revealing onmicrosoft.com Tenant Name?

Wanna bet? :) Give me a domain name, and let's see if I can get the matching onmicrosoft.com domain.
Here's one of the methods: https://learn.microsoft.com/en-us/graph/api/tenantrelationship-findtenantinformationbydomainname?vie...
1 Like
Reply
ItsRefik

‎Dec 26 2022 07:36 AM

‎Dec 26 2022 07:36 AM

Re: DKIM Without Revealing onmicrosoft.com Tenant Name?

why would anyone want to do that, I wonder...hmmm
0 Likes
Reply