Ensuring Email Security: Automatically Check and Enable DKIM, SPF and DMARC Records in Exchange Online
Creating a Custom Ubuntu Template in Proxmox with Cloud-Init: A Step-by-Step Guide
Prepare Cloud-Init Templates
- SSH into your Proxmox host.
- Download the Ubuntu Cloud-Init image.
wget https://cloud-images.ubuntu.com/groovy/current/groovy-server-cloudimg-amd64.img
- Create the new VM to be used as a template. In the following example “9000” is the VM id. Set this to anything that you’d like. It is set to 9000 here so that it doesn’t interfere with any other VMs and is listed after the existing VMs as they are listed in numerical order.
qm create 9000 --memory 2048 --net0 virtio,bridge=vmbr0
- Import the img to the local-lvm storage
qm importdisk 9000 bionic-server-cloudimg-amd64.img local-lvm
- Attach the disk that was just created to the VM as a SCSI drive. Ubuntu Cloud-Init images requires the
virtio-scsi-pcicontroller type for SCSI drives.
qm set 9000 --scsihw virtio-scsi-pci --scsi0 local-lvm:vm-9000-disk-1
- Configure a CDROM drive, used to pass the Cloud-Init data to the VM.
qm set 9000 --ide2 local-lvm:cloudinit
- Configure a serial console to be used as the display.
qm set 9000 --serial0 socket --vga serial0
- Create the template
qm template 9000
Deploy Cloud-Init Templates
- Clone the template. In this example “150” is the desired id of the VM.
qm clone 9000 150 --name ubuntu
- Optional: Configure SSH Public Key – If you do not do this, you will likley need to modify the sshd conf file to allow password authentication in order to ssh into the new VM.
qm set 150 --sshkey ~/.ssh/id_rsa.pub
- Optional: Configure networking. This can be done from the gui before booting the VM or you can allowd DHCP to assign the IP address.
qm set 150 --ipconfig0 ip=192.168.1.100/24,gw=192.168.1.1
- At this point I like to increase the disk space before starting the VM. Cloud-init starts with a very small disk. Increase using the GUI to your desired size.
- Start the VM.
Hey there! So, this is a PowerShell script that gets the accepted domains in a Microsoft 365 tenant. After that, it checks for SPF, DKIM and DMARC DNS records for each domain and returns a report on the status of these records. As of right now, it only grabs the default domain, but it can easily be modified to get all domains.
If any of the DNS records are missing, the script will prompt you to generate a CSV file with the missing DNS records. For usability the CSV is loaded into the clipboard and can be posted in a spreadsheet. The CSV file can be used as a reference to add the missing DNS records to the domain’s DNS zone.
The script also checks the DKIM signing configuration for each domain, and if it’s disabled, it prompts the user to enable it.
Overall, this script helps Exchange Online admins ensure that their tenant’s DNS records are correctly configured for SPF, DKIM and DMARC, and prompts them to fix any missing records. It’s a handy tool for anyone who manages an Exchange Online environment and wants to ensure that their organization’s email is secure and reliable.
