This article describes how to configure FortiMail to take the AS profile action, overriding the DMARC record policy.
In FortiMail v7.2, FortiMail offers three different options regarding which action to take after a failed DMARC check.
Set a DMARC failure action:
- use-policy-action: Respect all actions specified in the DMARC record.
- use-profile-action: Use the action specified in the antispam profile.
- use-profile-action-with-none: Respect p=none sender policy in the DMARC record, and use the antispam profile action otherwise.
By default, FortiMail will use the setting 'use-profile-action-with-none'.
In order to always take the action configured in the AntiSpam profile, the following commands can be used:
# config antispam settings
set dmarc-failure-action use-profile-action
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.