DMARC Manager

English

Español
Deutsch
Français
Italiano
한국어
日本語
Português (BR)
繁體中文

English

Español
Deutsch
Français
Italiano
한국어
日本語
Português (BR)
繁體中文

Actions

Actions are task recommendations that DMARC Manager creates automatically for each domain. They appear when you click the Actions button on the Domains page and guide you through the steps needed to set up and strengthen your email security. Each action includes a priority label so you can address the most important items first.

How Actions are created

DMARC Manager creates actions automatically — you do not need to create them manually. When you add a domain, the system generates the initial set of actions based on what still needs to be configured. Additional actions may appear later if the system detects that your settings can be improved, for example if your DMARC policy is not applied to all of your email traffic.

Viewing Actions

On the Domains page, each domain row shows an Actions button with a number badge. The badge shows how many open actions the domain currently has. If the badge shows zero, no actions are currently required — the button is disabled and shows a No Action Required tooltip.

Click the Actions button to see the list of action cards for that domain. If the button shows an Action Required tooltip, click it to open the action list. Expand any card by clicking the down arrow to reveal the full description and available steps.

Action types

Enable DMARC Reporting

Priority: Critical

Gain visibility over who sends emails from your domain. To start capturing DMARC reporting data you'll need to setup and verify DMARC.

Click Setup Now to go to the DMARC setup page and complete the setup process.

Enable SPF Management

Priority: Critical

Authorize senders and prevent spoofing. Delegate your SPF record and start leveraging tools like SPF flattening.

ScenarioButton
SPF is disabledEnable & Setup
SPF is already enabledSetup

Clicking Enable & Setup opens a dialog to enable SPF management, then navigates to the setup page. Clicking Setup navigates directly to the SPF setup page.

Enable TLS Reporting

Priority: Critical

Gain insights into how your emails are securely transmitted. To start capturing failure reports you'll need to setup and verify TLS-RPT Reporting.

ScenarioButton
TLS-RPT is disabledEnable & Setup
TLS-RPT is already enabledSetup

Clicking Enable & Setup opens a dialog to enable TLS-RPT, then navigates to the setup page. Clicking Setup navigates directly to the TLS-RPT settings page.

Fix SPF Directives

Priority: Critical

Fix lookup limits and void lookups. The description shown depends on the specific issues detected with your SPF record:

  • Both issues present: We've identified a high number of DNS lookups and void lookups; reduce them by removing unnecessary SPF mechanisms, consolidating includes, flattening your SPF record, and correcting or removing references to invalid or non-existent domains.
  • Too many DNS lookups: We've identified a high number of DNS lookups; remove unnecessary SPF mechanisms, consolidate includes, or flatten your SPF record.
  • Void lookups present: We've identified void lookups in your SPF directives; fix or remove SPF mechanisms that reference invalid or non-existent domains.
  • Other directive issues: We've identified issues with your SPF directives that need to be resolved.
ScenarioAvailable buttons
SPF is disabledEnable SPF Management
SPF is enabled but not verifiedReview Directives and Setup
SPF is partially or fully verifiedReview Directives

Clicking Enable SPF Management opens a dialog to enable SPF management. Clicking Review Directives navigates to the SPF settings page where you can make changes. Clicking Setup navigates to the SPF setup page.

Fully Enforce DMARC Policy

Priority: Moderate

Apply your DMARC policy to all email traffic. Your DMARC policy is not currently applied to all of your email traffic. Update your policy percentage to 100% to ensure full and consistent enforcement.

There are three scenarios depending on your current DMARC verification status:

ScenarioAvailable buttons
DMARC not yet fully verifiedSet to 100% and Setup
DMARC partially verifiedUpdate Setup
DMARC fully verifiedSet to 100%

Clicking Set to 100% opens a confirmation dialog. Clicking Setup or Update Setup navigates to the DMARC settings page.

Note: If your DMARC record is not yet fully verified, the percentage change will only take effect once you've fully set up and verified DMARC Management. If your record is only partially verified, you will need to update your DNS record manually at your DNS provider, or complete full verification through DMARC Manager.

Set SPF to Soft Fail

Priority: Moderate

Strengthen protection against unauthorised senders. Your SPF record's default qualifier rule is not validating emails from unauthorized sources, and they are not being treated as suspicious. Update your SPF record to soft fail to help prevent unauthorized use of your domain.

ScenarioAvailable buttons
SPF is disabledEnable SPF Management
SPF is enabled but not verifiedSet to Soft Fail and Setup
SPF is partially verifiedUpdate Setup
SPF is fully verifiedSet to Soft Fail

Clicking Enable SPF Management navigates to the SPF settings page to enable management. Clicking Set to Soft Fail opens a confirmation dialog. Clicking Setup or Update Setup navigates to the SPF setup page.

Completing an Action

Actions are resolved automatically when you complete the required configuration:

ActionResolved when
Enable DMARC ReportingDMARC record is partially or fully verified
Enable SPF ManagementSPF record is partially or fully verified
Enable TLS ReportingTLS-RPT record is fully verified
Fix SPF DirectivesSPF lookup and void lookup issues are no longer detected
Fully Enforce DMARC PolicyPolicy percentage updated to 100%; automatically cancelled if DMARC policy changes away from reject
Set SPF to Soft FailSPF record qualifier is updated to soft fail (~all)

Once an action is resolved it is removed from the Actions list and the badge count on the Domains page decreases.