Cisco Cisco Email Security Appliance X1070 Mode D'Emploi

DKIM Verification

Enable DKIM verification.

Enable SPF/SIDF 
Verification

Enable SPF/SIDF signing on this listener. For more 
information, see the “Email Authentication” chapter of 
the Cisco IronPort AsyncOS for Email Advanced 
Configuration Guide.

Conformance Level

Set the SPF/SIDF conformance level. You can choose 
from SPF, SIDF or SIDF Compatible. For details, see 
the “Email Authentication” chapter of the Cisco 
IronPort AsyncOS for Email Advanced Configuration 
Guide.

 Downgrade PRA 
verification result if 
'Resent-Sender:' or 
'Resent-From:' were 
used: 

If you choose a conformance level of SIDF compatible, 
configure whether you want to downgrade Pass result of 
the PRA Identity verification to None if there are 
Resent-Sender: or Resent-From: headers present in the 
message. You may choose this option for security 
purposes.

HELO Test

Configure whether you want to perform a test against 
the HELO identity (Use this for SPF and SIDF 
Compatible conformance levels). 

Consider Untagged 
Bounces to be Valid

Applies only if bounce verification tagging (discussed 
in the “Configuring Routing and Delivery Features” 
chapter of the Cisco IronPort AsyncOS for Email 
Advanced Configuration Guide) is enabled. By default, 
the appliance considers untagged bounces invalid and 
either rejects the bounce or adds a custom header, 
depending on the Bounce Verification settings. If you 
choose to consider untagged bounces to be valid, the 
appliance accepts the bounce message.

See