User Guide

ManualsBrandsCisco Manualsantivirus security softwareCisco Email Security Appliance C680

541

542

543

544

545

546

547

548

549

550

20-38

AsyncOS 9.1.2 for Cisco Email Security Appliances User Guide

Chapter 20 Email Authentication

DMARC Verification

Note By default, AsyncOS provides a default DMARC verification profile. If you do not want to create a new

DMARC verification profile, you can use the default DMARC verification profile. The default DMARC

verification profile is available on Mail Policies > DMARC page. For instructions to edit the default

DMARC verification profile, see Edit a DMARC Verification Profile, page 20-39.

Procedure

Step 1 Choose Mail Policies > DMARC.

Step 2 Click Add Profile.

Step 3 Enter the name of the profile.

Step 4 Set the message action that AsyncOS takes when the policy in the DMARC record is reject. Choose one

of the following:

• No Action. AsyncOS does not take any action on the messages that fail DMARC verification.

• Quarantine. AsyncOS quarantines the messages that fail DMARC verification to a specified

quarantine.

• Reject. AsyncOS rejects all messages that fail DMARC verification and returns a specified SMTP

code and response. The default values are, respectively:

550 and #5.7.1 DMARC unauthenticated

mail is prohibited.

Step 5 Set the message action that AsyncOS takes when the policy in the DMARC record is quarantine. Choose

one of the following:

• No Action. AsyncOS does not take any action on the messages that fail DMARC verification.

• Quarantine. AsyncOS quarantines the messages that fail DMARC verification to a specified

quarantine.

Step 6 Set the message action that AsyncOS takes on the messages that result in temporary failure during

DMARC verification. Choose one of the following:

• Accept. AsyncOS accepts messages that result in temporary failure during DMARC verification.

• Reject. AsyncOS rejects messages that result in temporary failure during DMARC verification and

returns a specified SMTP code and response. The default values are, respectively:

451 and #4.7.1

Unable to perform DMARC verification.

Step 7 Set the message action that AsyncOS takes on the messages that result in permanent failure during

DMARC verification. Choose one of the following:

• Accept. AsyncOS accepts messages that result in permanent failure during DMARC verification.

• Reject. AsyncOS rejects messages that result in permanent failure during DMARC verification, and

returns a specified SMTP code and response. The default values are, respectively:

550 and #5.7.1

DMARC verification failed.

Step 8 Submit and commit your changes.