Share via

mn365.onmicrosoft.com hosting a Business Domain, however all email recipient are reveing a "email has failed its domain's authentication"

Anonymous
2023-09-29T14:39:00+00:00

mn365.onmicrosoft.com hosting a Business Domain ex. ABC.com

All email recipients are receiving a PHISHING warning "email has failed its domain's authentication" from that particular Business domain ex. ABC.com host by MS Office365.

Arc-Authentication-Results: i=1; mx.microsoft.com 1; spf=softfail (sender ip is X.X.X.X) smtp.rcpttodomain=pm.me smtp.mailfrom=ABC.com; dmarc=fail (p=none sp=none pct=100) action=none header.from=aABC.com; dkim=none (message not signed); arc=none

Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mn365.onmicrosoft.com;

 s=selector2-mn365-onmicrosoft-com;

 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

 bh=0oLIORAUARSm9IdYfoOIl9Tk0jgkhYcQUxUbXmzxKF4=;

 b=SC1bQn3rB+rHFydi8JxKub/iGEC9PrZJSlc7Gzflu+xMpwusvfuS605Zo3iAbSwzTbHaor0LSDwvq0fTarLhdyzN6Js4lbQ+ceDXcHLiJBmDrXmz3GjqtLIBevJpTkGA48z2pTTPQLoHCj6JBtd9S/MywKOdTnbaxxN/Fc2ZbYE=

X-Ms-Exchange-Authentication-Results: spf=softfail (sender IP is X.X.X.X)

 smtp.mailfrom=ABC.com; dkim=none (message not signed) header.d=none;dmarc=fail action=none header.from=ABC.com;

Received-Spf: SoftFail (protection.outlook.com: domain of transitioning ABC.com discourages use of X.X.X.X as permitted sender)

Questions

How can I configure my MS Business Domain so all emails are NOT flagged with "This email has failed its domain's authentication requirements. It may be spoofed or improperly forwarded."?

Thank you!

Outlook | Web | Outlook on the web for business | Security

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

Answer accepted by question author

Anonymous
2023-09-29T17:09:47+00:00

Hello Gerhard Kessel,

Good day and thank you for posting to Microsoft community.

Based on the description and error message, you may need to set up SPF for your domain. SPF helps validate outbound email sent from your custom domain (is coming from who it says it is). It's a first step in setting up the full recommended email authentication methods of SPF, DKIM, and DMARC. More info can be found here Set up SPF to help prevent spoofing | Microsoft Learn.
->Use DKIM to validate outbound email sent from your custom domain: https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/email-authentication-dkim-configure?view=o365-worldwide

->Set up DMARC for outbound mail from Microsoft 365: https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/email-authentication-dmarc-configure?view=o365-worldwide

If you need assistance with this set up, as an admin, you can create a service request our online channel through the O365 admin center (Help &Support). A support agent can call you and connect with you remotely, for further troubleshooting. Something I may not be able to do as public forum support.

Get support for Microsoft 365 for business -- Online support.

Thank you for your precious time and have a great day.

Best Regards,

Ashraf.

Was this answer helpful?

1 person found this answer helpful.
0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest