 You may ask, how to implement DMARC? It's actually pretty simple. You want to make sure that you deploy both SPF and DKIM for your domains. We discuss how to deploy SPF and DKIM in some of our previous parts of this course. You want to ensure that any mail servers that are being used by your domain align with those published SPF and DKIM records. So if you're only sending from Office 365, it's really simple. You just have to make sure that the Office 365 include is in your SPF record. And you have to make sure that those two DKIM records are published and you have DKIM signing turned on for your domains in 365. If you're using other sources, it gets a little more complicated. But you just have to make sure that those other sources are in your SPF record. And you have to make sure that the other sources that are sending email as your domain, whether they be the survey monkeys or constant contacts or whatever, you just have to make sure that those sources are configured so that you have a DKIM record set up for those and that those sources are signing your emails with DKIM signatures. When you're first implementing DMARC, we recommend publishing a DMARC record with a NUN flag, which basically is instructing a receiving mail server to not reject or quarantine the messages. All it's going to do is collect information about the sources that are sending those messages. And later on, if you want to, you can actually review the reports that you get from those domains and actually act upon them. In general, though, when you're in 365, just the fact of publishing that DMARC record helps a lot with making sure that the spoofing is prevented. So even those last two steps there about reviewing DMARC reports and turning on that quarantine flag after issues are addressed, those may not even be necessary for your organization.