Cisco Cisco Email Security Appliance C680 User Guide
5-24
Cisco IronPort AsyncOS 7.6 for Email Advanced Configuration Guide
OL-25137-01
Chapter 5 Email Authentication
Enabling SPF and SIDF
To use SPF/SIDF, you must enable SPF/SIDF for a mail flow policy on an incoming listener. You can
enable SPF/SIDF on the listener from the default mail flow policy, or you can enable it for particular
incoming mail flow policies.
enable SPF/SIDF on the listener from the default mail flow policy, or you can enable it for particular
incoming mail flow policies.
To enable SPF/SIDF on the default mailflow policy via the GUI:
Step 1
Click Mail Policies > Mail Flow Policy.
Step 2
Click Default Policy Parameters.
Step 3
In the default policy parameters, view the Security Features section.
Step 4
In the SPF/SIDF Verification section, click Yes.
Figure 5-17
Enabling SPF/SIDF in the Mail Flow Policy
Step 5
Set the level of conformance (the default is SIDF-compatible). This option allows you to determine
which standard of SPF or SIDF verification to use. In addition to SIDF conformance, you can choose
SIDF-compatible, which combines SPF and SIDF.
which standard of SPF or SIDF verification to use. In addition to SIDF conformance, you can choose
SIDF-compatible, which combines SPF and SIDF.
Table 5-1
SPF/SIDF Conformance Levels
Conformance Level
Description
SPF
The SPF/SIDF verification behaves according to RFC4408.
- No purported responsible address (PRA) identity verification takes
place.
place.
NOTE: Select this conformance option to test against the HELO
identity.
identity.