Email Authenticity with DMARC
- Cole R
Achieving email authenticity is part of an ongoing effort to protect users from phishing and improve the deliverability/reputation of email sent by UW Oshkosh.
Campus email administrators have implemented Domain-based Message Authentication, Reporting & Conformance (DMARC) to have better control illegitimate use of UW Oshkosh email addresses. DMARC is an email authentication, policy and reporting protocol that provides a way for email senders and receivers to determine whether or not a given message is legitimately from the sender and what to do if it is not. Messages are DMARC aligned if they pass SPF or DKIM checks, and the domain in the From Header matches the results of SPF/DKIM. The email address in the From Header is what recipients see.
DMARC is an email authentication, policy and reporting protocol that works to verify emails through two existing authentication standards, SPF and DKIM.
Google, Yahoo and Apple began requiring DMARC for high-volume senders in February 2024.
Approved and unapproved email services
Approved/Verified
UW Oshkosh Microsoft 365
Campus list servers
Campus SMTP relay
Salesforce
Qualtrics
Sending email using any other email service requires campus email administrator coordination to work with DMARC
Unapproved/Unverified
Third-party email services that are not configured to work with the new DMARC controls
Any vendor using off-campus servers that have not coordinated with IT
Unapproved email marketing tools
E.g. Mailchimp, Brevo
Non-UWO email accounts that send as a @uwosh.edu address
E.g. a hotmail.com or gmail.com address set to send as a uwosh.edu address
Third-party email services that don’t send email using on-campus mail services
Get help becoming DMARC compliant
Need help sending DMARC-protected email? Submit a request below for a one-on-one consultation.