How Do I Request to Whitelist a Vendor or to Have the [External] Tag be Removed From a Specific Email Sender Address?

Question

How Do I Request to Whitelist a Vendor or to Have the [External] Tag to be Removed From a Specific Email Sender Address?

Answer

If you receive a message from an external email address that should be whitelisted and/or marked as an approved external sender, you may report it to BGSU Information Security by submitting a request with the following information:

  1. Name of the Sending Vendor.
  2. Indicate whether or not the email from address is spoofing* an @bgsu.edu email address.
  3. Does the vendor have Sender Policy Framework (SPF) implemented?
  4. Provide the full From address being used. 
  5. Provide the sending IP address(es).
    • Is the sending IP Address(es) dedicated to only sending mail for this sending vendor?
  6. Does the vendor support Domain-based Message Authentication, Reporting & Conformance (DMARC)
  7. Does the vendor support Domain Keys Identified Mail (DKIM)
  8. Are you requesting the [External] tag to be removed?
    • If yes, security will need to approve this based on if the email should be treated as an internal BGSU communication and what the existing agreement is with the vendor.

*Email spoofing is the fabrication of an email header/name in the hopes of tricking the recipient into believing the email originated from someone/somewhere (such as an @bgsu.edu email account) other than the intended source.

For additional assistance, please contact Information Technology Services at 419-372-0999 or through chat.

Details

Article ID: 70599
Created
Tue 1/22/19 2:10 PM
Modified
Thu 11/5/20 2:44 PM