Although many organizations are migrating to the cloud via Microsoft 365 or Exchange Online, we still see many operating their own on-premises Microsoft Exchange Server.

Over the past few years we’ve seen an increase in implementations of DMARC and DKIM in various platforms. Unfortunately, there is no out-of-the-box support for DKIM and DMARC in Microsoft Exchange, but there are third-party solutions available.

There are two types of choices available:

  1. Deploying a solution in front of Microsoft Exchange via a virtual appliance that is taking the responsibility of the email filtering/authentication.
  2. Implementing plugins directly on the Microsoft Exchange Server that introduce the missing functionality.

Plugins for Microsoft Exchange Server

Note: dmarcian is not affiliated with these solutions, so please choose accordingly.

Based on previous experiences we’ve encountered, the following plugins introduce DKIM and/or DMARC to an on-premises Microsoft Exchange Server.

  • Netal – DkimX
    Add-on for MS Exchange Server 2013/2016/2019 which supports DKIM-signing of outgoing messages and verification of incoming messages by using SPF, DKIM and DMARC.

Whether you choose the route of a plugin or virtual appliance, we hope this provides some clarity on implementing DKIM and DMARC on an on-premises Microsoft Exchange Server. Here are other resources to assist with your DMARC and DKIM records:

How to Publish a DMARC Record

How to add your DKIM record

We’re here to help if you need assistance with your SPF, DKIM or DMARC initiatives. You can contact us via our contact page, and if you haven’t registered for our free, 14-day trial, you can get started here.

Want to continue the conversation? Head over to the dmarcian Forum