Having a Microsoft account is undoubtedly cool—until the moment arrives to set up your email, and you encounter terms like SPF, DMARC, and DKIM. You might be questioning whether it's still a good idea. The answer? Absolutely!
We're here to walk you through the entire process of setting up your email security. First, let's dive into the basics of SPF, DMARC, and DKIM. Learn more about these essential components by checking out our detailed guide here. It's time to take your Microsoft account to the next level!
Step 1: Login to the Admin Page
First now you need to login go the admin page:
From the admin page, go to settings and select domains:
Step 2: Add a New Domain
Next you need to click on the plus sign to add a new domain:
Now type in the domain and select the button use the domain:
Step 3: Configure Records
If your domain registrar is Godaddy you will be prompted to sign in to Godaddy and the entire records required for setup will be updated automatically.
Otherwise you will have to enter this manually:
You will then be asked to create a record for the domain:
For the record the value will be the provided value but the name should be @ and type TXT.
After verifying this you will be asked to how you intend to use the domain:
Step 4: Verify and Add DNS Records
Select Add your own DNS records:
You should then see the record and record type you need to add for the domains:
Once done click on continue. It will connect and verify if the settings were entered correctly and if it was it will be added to the list of domains.
Now you have SPF and MX records configured.
Step 5: Configure DMARC
For DMARC you can use tools like https://easydmarc.com/tools/dmarc-record-generator to generate DMARC for your domain.
Then add another text record using the format below:
Type: TXT
Value: the generated DMARC from https://easydmarc.com/tools/dmarc-record-generator
Name: _dmarc
Step 6: Set Up DKIM
Now the last part is the DKIM.
To set this up go to Security in the admin center:
Then head to Policy and rules:
Then select threat policies:
Then select Email Authentication:
Then select DKIM:
You should see the list of domains you’ve added. Double click on anyone:
Then from the pop-up create DKIM keys button.
You should then see a pop-up with CNAME records you need to add to your domain:
Then enable it by clicking on the sign messages for this domain.
That's it! Your Microsoft account is now equipped with SPF, MX, DMARC, and DKIM records for enhanced email security.