Help
FortiMail
FortiMail provides advanced, multi-layer protection against the full spectrum of email-borne threats
alya
Staff
Staff

Created on ‎07-15-2024 01:01 AM Edited on ‎02-11-2025 07:00 AM By Moderator

Article Id 325932

Troubleshooting Tip: FortiMail DMARC fail but did not quarantine the email

Description This article describes how to troubleshoot when the FortiMail did not quarantine an email when DMARC failed.
Scope FortiMail.
Solution

FortiMail combines non-final actions set in the antispam profile with the actions set in the DMARC DNS record policy.

If the antispam profile DMARC actions are non-final, such as 'Tag subject' and 'Notify', then they are combined with the actions in the DMARC DNS record policy: nonereject, or quarantine. 

 

This happens when the FortiMail configuration is:

 

config antispam settings
    set dmarc-failure-action use-profile-action-with-none

end

 

Refer to the following document to know more about FortiMail actions: How FortiMail processes email.

 

Solution:

 

To configure FortiMail to use antispam profile action, run the below command:

 

config antispam settings
    set dmarc-failure-action use-profile-action

end

 

As a result, if the email fails the DMARC check, the action configured in the Antispam profile of FortiMail will be applied and the DMARC record policy will be ignored.
931
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.