Closed bhozar closed 5 years ago
Hi,
DKIM results are only provided for messages that have been DKIM signed.
The report you provided was two row
elements, only one of which has a dkim
element inauth_results
, because the other messages were not DKIM signed at all.
Each row
element in the DMARC report is saved in Elasticsearch as a separate event, only one of which contains dkim_results
.
I have a lot of DMARC reports from Yahoo! ingested into the system which are not populating some fields:
The results I see in ElasticSearch:
The original DKIM report:
To me it looks like the fields should populate from the report.