Authorize sending of forensic reports to another domain?

tractorunopened · July 26, 2019, 2:45pm

I want to have forensic reports sent to another domain than the one the specific DMARC-record is set up on.
I could setup a forwarding rule on an existing mail address or create an alias, but that will cost a license and is a bit cumbersome in my situation.

I can write any mail address in the DMARC-record, but the “Domain overview” UI consistently warns me that the DMARC for mydomain.com “needs attention”.
In the hover text it states: “anotherdomain.com has not authorized your domain to send “ruf” reports to their address.”

How do I obtain or configure this authorization?
Will the current configuration avert some senders from sending forensic reports, since they go to another domain (I do get some reports)?

sean · July 29, 2019, 7:42pm

Hi there, thanks for your inquiry. The DMARC spec allows for a few different means of receiving data. In your example, you will need to satisfy something called External Verification, which addresses exactly what you are looking for. We’ve detailed the steps necessary here: https://forum.dmarcian.com/t/what-is-external-destination-verification/62 . It’s just a matter of adding another TXT record. I hope this helps.

Topic		Replies	Views
Example.com is missing the required DNS TXT record to authorize the receipt of forensics reports from example.com. This is a requirement of the DMARC specification and you may be missing data as a result	2	12100	July 16, 2021
What is “External Destination Verification”? Technical Help	0	1223	May 30, 2019
Is Dmarcian Forensic reporting actually working? Technical Help	3	782	November 27, 2021
New client -- can I forward existing reports? Technical Help	2	779	May 7, 2021
FAQ: Understanding DMARC/Getting Started FAQ	6	2860	June 20, 2020

Authorize sending of forensic reports to another domain?

Related topics