Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
tokcum
New Contributor II

Created on ‎03-04-2024 12:15 AM Edited on ‎03-04-2024 12:16 AM

How to enable FortiMail ARC Sealing

Hi,

 

I would like to to enable ARC Sealing on a domain protected by FortiMail. I enabled ARC Sealing in the DKIM settings on the protected domain as advised by the the FortiMail Admin Guide. However, checking the mail header of a received mail, I do not see any ARC Sealing headers from FortiMail.

 

Our mail flow for incoming mails looks like this: Internet -> FortiMail -> Exchange Online.

 

I already tested different settings, such as ARC Sealing direction, DKIM signing on the Inbound Session profile, and disabled header removal. However, ARC Sealing was not done.

 

Any idea what I'm missing or what is exactly necessary to make FortiMail to "ARC seal" incoming mails before forwarding them to Microsoft?

 

Thank you.

Labels:
2927
0 Kudos
4 REPLIES 4
Stephen_G
Moderator
Moderator

Created on ‎03-06-2024 10:47 AM

Hello tokcum,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Stephen - Fortinet Community Team
2882
0 Kudos
Stephen_G
Moderator
Moderator

Created on ‎03-08-2024 10:08 AM

Hello tokcum,

 

We are still looking for someone to help you.

We will come back to you ASAP.


Regards,

Stephen - Fortinet Community Team
2860
nagarajs_FTNT
Staff
Staff

Created on ‎03-12-2024 06:30 AM Edited on ‎03-12-2024 06:31 AM

Hello tokcum,

 

For now in FML ARC sealing option, in Incoming direction we only support header from or mail from which is a protected domain in FML

Incoming: Incoming email that has header from or mail from as a protected domain in FML (ARC sealing must be enabled in this domain advance setting).
For example, email from internal1.com to internal2.com and internal1.com has been configured with ARC sealing in domain advance setting.

Outgoing: outgoing email that from an internal user to outbound user.

All: FML will do ARC sealing for emails that matched incoming/outgoing mentioned as above.

 

Regards,

Nagaraj

2816
ffn_jan
New Contributor

Created on ‎04-29-2024 05:38 AM

Hi Nagaraj

 

We have the same issue as tokcum - we never see any ARC-Seal from FML (V7.2.4), regardless of the sender and receiver domain and incoming or outgoing direction...

 

ARC-Sealing is configured as "All", DKIM is otherwise working as expected. What do we miss here?

 

Best Regards

jan

2382
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.