DKIM signing is set up for all your custom domains.

Why This Matters

Without DKIM signing enabled for all custom domains, malicious actors can forge email from your domains, increasing the risk of phishing attacks against your organization, partners, and customers. DKIM validates that emails claiming to be from your domain were legitimately sent by your authorized email service. Failing to configure DKIM for every custom domain leaves a gap in email authentication that attackers can exploit.

What Aether365 Checks

This check verifies that DKIM signing is configured and enabled for every custom domain in your Microsoft 365 tenant. It appears in the Aether365 dashboard under microsoft-365 checks as ORCA.108.