One of the most important performance metrics for email marketing is deliverability, which measures the ability of your messages to arrive in recipients' inboxes rather than getting flagged as spam and filtered away, out of sight. Microsoft is dedicated to helping our Dynamics 365 for Marketing customers maximize deliverability, so we'd like to tell you about some of the latest developments in this area, and let you know what you can do about it.
One of the most common online scams, also known as phishing, occurs when a fraudulent message pretends to come from a well-known online service or financial institution. The goal is to trick recipients into responding to the message by providing private details such as passwords or credit card numbers. If your legitimate marketing emails get flagged as phishing attempts, they will never reach their recipients.
A great way to prevent phishing from occurring is for email recipients to authenticate the sending address for each message to confirm it really was sent from a domain that belongs to the company or organization it claims to belong to. A technology called DKIM (DomainKeys Identified Mail) helps accomplish this by incorporating the following elements:
When you send email from Dynamics 365 for Marketing, your messages come from a domain owned by Microsoft (such as contoso.onmicrsoft.com), but the from-address will probably belong to one of your own marketing, sales, or account managers using a more well-known domain that belongs to your organization (such as email@example.com). This discrepancy can be a red flag when an inbound email server does a DKIM check on incoming messages, which is why a full implementation of DKIM is so important for ensuring high deliverability, especially when you are using a third-party sending service like Dynamics 365 for Marketing.
Microsoft Dynamics 365 for Marketing already uses DKIM to sign all outgoing messages as coming from a legitimate Microsoft domain. Until now this was enough, but Office 365 has recently upgraded their security to not only check that the DKIM signatures are legitimate, but also to confirm that the sending domain is authorized to send email on behalf of the same organization as the claimed email-from address. We expect other major email providers, especially business providers, to follow suit soon.
That means that your deliverability rates could be about to plummet unless you link your from-address domain to your Dynamics 365 for Marketing domain in the DNS system. However, we can't register our domains as being legitimate senders for your organization—only you can do that, which is part of the reason why this system helps to increase security both for you and for your message recipients.
All you need to do to fix this is to register your Dynamics 365 for Marketing sending domain with the DNS system as being a legitimate sender for your organization. Because Dynamics 365 for Marketing already includes its own DKIM signature in each message, receiving servers will then be able to confirm that both the sending address (your email address) and the sending server (your Dynamics 365 for Marketing server) both belong to authenticated domains that are approved to send email on behalf of your organization.
The process is easy and straightforward:
Microsoft will soon be contacting all customers who can benefit from linking their authenticated Dynamics 365 sending domain to their email-from domain through DKIM and DNS. Although many customers may already have DKIM set up for their own sending domains, this is an additional process—so even if you already have DKIM on your own servers, you may still hear from us!