Does anyone have any good reads - articles or guides on how to do advanced analysis of DMARC reports?
After getting my company in line with all sending domains and services, having policy=none for weeks showed me 100% compliance for SPF, DKIM and DMARC.
After leaving it like that for a few weeks I’ve started implementing policy=quarantine at 5% steps as recommended, but am now seeing SPF and DKIM plummet to as low as 80% in some instances, with no changes made here to our domains or services.
I’ve tried the videos and guides here, but there’s no real detail.
Has anyone written a guide to properly understanding Detail Viewer for example?
However, each situations are unique, and changing the policy alone would not cause a drop in compliance. Causes of compliance drop can vary widely, from new accounts being onboarded, shadow IT and more. Don’t hesitate to reach out to support@dmarcian.com with your questions, we can endeavor to provide you more context and guidance after getting to know a bit more about you and your organization.