• MSSP Administrators and Account Owners can now enforce Two-Factor Authentication (2FA) during the process of adding new admins and users. This feature is available for both user invitations and manual user/admin creation.

• Once activated, the invited or newly created users will be directed to a 2FA activation screen upon their first login.

This enhancement provides a consistent security experience across all user management flows, ensuring that all new users are secured with 2FA right from the start.

• Enhanced API Endpoint: Get User Details

  • The GET /api/v1/account/members/{user} endpoint has been updated to include additional data in its response:
  • 2FA (Two-Factor Authentication) Status: The user's 2FA enforcement and enablement status are now returned in the response.
  • Last Login Date and Time: The response now includes the last login timestamp, providing insights into the user's recent activity.
  • User Privileges/Resources:The specific privileges and resources assigned to the user. This allows for more granular control and visibility over user access levels.

• New API Endpoint: Toggle 2FA Status

  • Introduced a new API endpoint to manage 2FA settings for individual users:
  • PATCH /api/v1/account/members/{user}/enforce-2fa/{status}
  • This endpoint allows administrators to programmatically enable or disable 2FA enforcement for specific users, streamlining the management of security configurations.

• Updated API Endpoint: Get All Users

  • The existing GET /api/v1/account/members endpoint, which returns the details of all users in the account, has been enhanced to support filtering based on specific criteria:
  • User ID: Retrieve user details by their unique identifier.
  • User Email: Filter users based on their email address.
  • User Name: Fetch user details using their name.

  These filters allow for more targeted retrieval of user information, improving the efficiency of user management through the API.

These updates significantly enhance the functionality and flexibility of user management APIs, offering more detailed insights and control over user data and security settings.

More details can be found on our API documentation.

For our whitelabel MSSPs, the domains used for various hosted services will now be whitelabelled with your provided whitelabel domain.

This includes whitelabelling:

• DMARC RUA/RUF tags for Hosted and non-hosted DMARC
• Hosted SPF
• Hosted BIMI
• Hosted TLS-RPT

To learn more about this feature and how to activate it for your whitelabel MSSP, please reach out to our support team (support@powerdmarc.com).

Introducing our latest feature enhancement: the integration of Seclytics' predictive threat intelligence.

Threat Intelligence Enhancement

• UI Revamp: Modernized the threat intelligence page for a better user experience.
• Seclytics Integration:
  • Access Seclytics' predictive threat intelligence data directly within PowerDMARC.
  • View comprehensive reports summarizing current and emerging cyber threats, detailed threat intelligence data, predictive analysis, trends, and mitigation recommendations.
  • Empower your organization to proactively defend against potential attacks and enhance security posture.

Read more about this integration on our blog.

You can now watch video tutorials on how to configure each Hosted Service directly within the platform. Video tutorials have been added for the following features:

• Hosted SPF
• Hosted DKIM
• Hosted DMARC
• Hosted BIMI
• Hosted MTA-STS

We are excited to announce significant enhancements to the Domain Analyzer embedded widget, designed to improve customization, ease of use, and reporting capabilities.

Enhancements:

1. Customization Options:

   • Choose between Light and Dark view modes.
   • Adjust detailed colors including title and secondary text colors, button colors, background colors, and shadow colors.

2. Simplified Embedding:

   • Easily embed the widget on your site with a single HTML script tag.
   • Access the MSSP-specific Domain Analyzer page directly via URL https://msspname.powerdmarc.com/analyze
     without needing to embed the HTML script, and maintain your own branding.

3. Dedicated Analysis Page:

   • Domain analysis results are now displayed on a dedicated page within your MSSP tenant.
   • This page is customizable for whitelabel MSSPs.

4. Export and Email Results:

   • Export domain analysis results as a PDF.
   • Option to send results to a user-specified email.

5. New "Domain Analyzer Leads" Page for MSSPs:

   • Access detailed information on tool usage, including who used the tool and emailed PDF results.

For more information on how to use the upgraded tool, please refer to the videos below:

1. How to Embed the Domain Analyzer Widget on Your Website (Step-by-Step Tutorial)
2. Domain Analyzer Leads

We have introduced a new "DNS Status" indicator to help users easily track the status of their PowerSPF DNS record configuration.

The DNS Status indicator will display one of the following states:

1. Activated: The correct DNS record has been published and detected on the domain's DNS.
2. Not Activated: The correct DNS record has not been published on the domain's DNS.
3. Incorrect Configuration: An incorrect DNS record has been published on the domain's DNS.

This feature aims to provide clear and immediate feedback on the status of DNS configurations, ensuring a smoother PowerSPF setup process.

We are excited to announce several improvements to our SSO configuration functionality:

• UI Enhancements: The SSO configuration pages have been redesigned for a more intuitive and user-friendly experience.

• Edit SSO Settings: You can now easily edit SSO settings after creating a connection, providing greater flexibility and control.

• Disable SSO Connections: We have added the option to disable SSO connections, allowing you to manage your authentication methods with greater ease.

These updates aim to streamline your SSO management and improve your overall experience.

Auto-generate Secure Passwords

An added functionality enables the autogeneration of passwords compliant with security standards with the option to copy the generated password for easy distribution.

This feature is now available on all account creation/editing pages, including but not limited to:

• Sign up page
• Customer Account Create/Edit page for MSSP admins
• User Account Create/Edit page for Main Users

API enhancement

A set of new additional API endpoints have been released providing MSSP admins additional capabilities in managing their Customer Accounts, Users and Domains:

• Single token for multiple MSSP account access
• MSSP API endpoints for hosted services
• MSSP API endpoints for Alerts
• API endpoints for Domain Health
• API endpoints for Dashboard domain information

All new endpoints are now available in our Postman and Swagger API documentation.

A new feature has been released that enables MSSP Admins to manage the Domain count limit and DMARC Compliant mail volume limit at the Customer account level:

• Upon account creation, each account is assigned a plan. The domain and DMARC Compliant mail volume limits of the account will initially match those of the assigned plan. Those limits have now been termed “Plan- wise limits” and are visbile on the Create Customer Account page:

• MSSP admins can now override the “Plan-wise limits” by specifying custom Domain and DMARC Complaint mail volume limits for each account. Those limits have been termed “Account- Specific Limits”

If the Account - Specific limits are specified, they will override the Plan - wise limit for that account only.

• The Account - Specific limits can also be edited from the Edit Customer Account page after account creation

Enhanced Hosted DKIM Management Experience

The new Hosted DKIM Setup Wizard allows you to easily add your current DKIM selectors and DNS records before publishing the NS records. This ensures immediate availability of your selectors once Hosted DKIM is activated. Additionally, you can add, edit, or delete selectors even after the initial setup.

You can also add comments to describe your selectors for better organization and clarity.

Hosted MTA-STS Layout Enhancements

• The enhanced 'Help' section, now featuring refined descriptions and new visuals, can be accessed via the 'Get Started' button.
• The domain selector reload button is now consistent with the design of other pages.
• Due to layout changes, the 'Hosted MTA-STS' and 'Hosted TLS-RPT' sections are now positioned side by side horizontally, with the corresponding record information displayed below each section.
• A reference link has been added to direct users to the corresponding TLS reporting domain page.
• Statuses of MTA-STS records are now clearly indicated using appropriate color.
• Accessibility issues have been resolved for the MTA-STS record Mode field.

TLS Report Upload & History

The platform now allows users to manually upload TLS Report JSON files and view their upload history.

1. PowerSPF has been relocated and can be found under Hosted Services on the left side menu
2. Date filter removal from Diagnostics page (PowerSPF) - This was done to improve the error retrieval and filtering experience.
3. PowerSPF Error indicator on management tab - This focuses on informing users if any issues are triggered with their existing SPF record. It can be seen on the PowerSPF management tab and redirects the user attention over to the Diagnostics
4. Hosted Services like PowerMTA-STS and PowerBIMI has been renamed to HostedMTA-STS & Hosted BIMI.

A revamp version on the pricing page is now available to our end users. This improvement makes it easier and much more clear for when users would like to upgrade their existing plan depending on their organizational needs.

Background Color is now customizable !!

White labelled MSSPs can now utilize a much more focused and flexible UI configuration when customizing their portal.

This enhancement is viewed as a method to achieve greater consistency, ensuring that the page customization is attractive and uniform across the entire portal.

PowerSPF has introduced new tabs, enhancing users' ability to manage their SPF records with greater sophistication: Management, Analytics and Diagnostics tabs.

PowerSPF has a new and improved Management tab with a revamped UI with the following changes and new functionality:

1. The Manual Setup section has been relocated below the Tracked Includes tree
2. The Status indicator has been renamed from Live to Enabled.
3. Users can now click the Reset button, accompanied by an updated pop-up message for confirmation. This action will remove all their included sources from the PowerSPF configuration page.
4. PowerSPF lookup section will also illustrate the functionality of the tool by comparing the lookup results of your domain with and without enabling the service.

The Analytics tab of the PowerSPF will show the additional information about the include tree, as well as mail volumes per sender source and IP address.
This will allow you to monitor the volume of the emails by the sender source and SPF mechanism and identify outliers.

And finally, the Diagnostics tab on the PowerSPF page will inform the client of any existing errors we have detected. Here you will be able to see not only the issues and warning messages related to the SPF record, but also the recommendations on how it can be fixed with the help of PowerSPF.

For situations where invited users aren't activating their accounts through email invites, we've introduced a solution.

Super Admins or Main Users now have the ability to manually grant access to users. Simply navigate to the Invites list, click Edit, switch the registration type from Email Invite to Manual, and this enables users/admins to log in without depending on email invites.

Spoofers can sometimes target your organization by creating illegitimate subdomains to send outgoing emails.This can cause your dashboard to be overcrowded with data for these illegitimate subdomains.

Our newly implemented UI/UX and logic changes will simplify the management of auto-discovered subdomains for the client.
The main impact is on three pages: Dashboard, Aggregate Reports and Manage Domains.

Manage Domain page:

• Underwent significant UI/UX changes.
• Users can now click on auto-discovered subdomains, directing them to a dedicated page.
• Implemented a tagging system for subdomains: Verified (legitimate), Flagged (illegitimate), and Unverified (not yet identified by the client).
• Empowers the client to categorize subdomains based on their legitimacy.
• The user guide on the Subdomains page will help to manage it properly.

Dashboard page & Aggregate page:

• Introduced a filter button in the UI/UX screen.
• The user can select to hide all flagged, verified or/and unverified subdomains in the account.

These updates enhance the user experience by providing more control and clarity over the management of subdomains, addressing the issue of subdomain clutter and potential spoofing.

We have improved the user experience by providing visibility into the Single Sign-On (SSO) status, indicating whether it is enabled or disabled.

Additionally, users can now easily ascertain whether an account or a specific user has accepted an email invitation directly from the Customer Management or Manage Users pages. This enhancement aims to streamline the monitoring and management of SSO settings and user interactions, offering greater transparency and efficiency.

Our new Sender Identification feature offers increased trust by verifying and classifying sender sources, which reduces spam and phishing risks significantly. The solution ensures compliance with industry standards, preventing email spoofing and unauthorized communication. With a user-friendly interface the End Users can manage their domains’ email sources, label the sources, authorize the trusted ones and configure SPF and DKIM records via the Hosted Services.

• The End User can see the Aggregate reports and sender sources grouped in a better, more optimized way.
• You can click the gear button under the Actions column to access the Configuration section and view detailed information about validated sender sources.
• Configuration pop up will guide you on how to configure SPF and DKIM records for the domain. But first, please select only one domain from the drop-down list to see this option.
• Our Hosted services will help you optimize the SPF and DKIM setups and protect your domains more efficiently.
• As an End User you can label and authorize the sources by clicking the Edit button from Actions as well. It can help find the source and label it in accordance with its functionality or theme.
• For those who prefer the previous version, the option to revert to the old version is available at the top of the page.
• Enhancements on Dashboard will help the user see the volumes of mails by Sender source, as well as configure them if needed.

Our PowerAnalyzer PDF templates just got a makeover for a sleeker look and improved functionality, especially for MSSP’s that have whitelabel enabled. Enjoy clearer visuals, effortless navigation, and tailored insights. 📈✨

We are introducing comprehensive BIMI lookup results, covering additional critical areas. The upcoming sections in PowerToolbox are designed to bring clarity to end-users:
✅ Logo Validation:

• A dedicated section for meticulous validation of BIMI logos, ensuring accuracy and adherence to standards.
  ✅ Certificate Validation:
• Thoroughly check BIMI certificates to address potential issues and expedite the resolution process.
  ✅ Theme Preview:
• Get a sneak peek into how your BIMI theme will appear, providing a visual understanding for both support and end-users.
  The improvements in the PowerToolbox, coupled with updates to the API documentation, are designed to eradicate any blind spots and provide a more thorough understanding of the BIMI protocol within your domain.

We're thrilled to announce an upgrade to the MSSP Dashboard, bringing you a more intuitive and refined user interface. Here's what's in store for you:

• Enhanced User Interaction
  Experience the convenience of drag-and-drop icons, allowing you to effortlessly manage and customize your dashboard blocks.
• Streamlined Clarity
  Titles and logic have been meticulously adjusted, providing a more straightforward and cohesive dashboard experience.
• Visual Sophistication
  Font size adjustments bring a fresh and modern look to key widgets, ensuring information is easily readable and accessible.
• Cleaner Widget Interface
  We've removed unnecessary icons from specific widgets, providing a cleaner and more focused view of your data.
• Seamless Navigation
  Navigate through your Plans effortlessly with the newly introduced scrolling functionality in the Plans box.
• Updated NO DATA Screens
  Explore our revamped NO DATA screens, ensuring a more informative and visually appealing experience when data is unavailable.
• Tailored Plans Section
  Focus solely on what matters – the Plans section now exclusively displays Active accounts, offering a more relevant and streamlined overview.

Introducing a seamless login transition! Experience a hassle-free shift from your MSSP Account to the Main User Account with just a click from the Customer Management page. Enjoy unified accessibility, enhanced security, and a streamlined connection between both accounts. Access to other user pages is still available through the account dropdown. Additional actions can be viewed by clicking on the three-dot button.

The BETA view on the Aggregate report’s Per Sending Source page for the end-users has new improvements!

• Faster Loading: Enjoy lightning-speed performance in our Beta view with optimized loading!
• Precise Filtering: Simplified domain selection and nice UI for a focused experience – choose one domain at a time, effortlessly.
• Sleek Reports: Discover insights instantly with default opening for Compatible reports. Then explore Forwarded and Failed reports with a click!
  Upgrade for a faster, more stylish experience! 🌟

Elevate your insights with a simple click on the Dashboard Graph, that will seamlessly redirect you to detailed Aggregate reports.
Dive deeper into your data effortlessly!

Explore Enhanced experience and new widgets on the MSSP Dashboard page!

• Dive into a world of insightful data for your MSSP and accounts. Tailor your dashboard with customizable widgets, and take control of your data visualization.
• Dynamic Dashboard Customization: Effortlessly filter and curate your dashboard with the widgets that matter most to you. Our drag-and-drop feature lets you design your page for ultimate convenience.
• Power-Packed Data: Unleash the potential with new additions like MSSP APIs, real-time alerts, top mail volume domains, and more. Transform your experience into a productive and manageable journey!
  🏡The previous dashboard view has a new home! Find it now at Customer Management > Accounts Summary page.

Experience the Setup Wizard revolution! A brand-new, streamlined journey with an improved design awaits for effortlessly configuring your domain and DMARC protocols.
Embrace the future of setup simplicity, because more is yet to come!

We are introducing a dedicated resource that will broaden access for MSSP admins, enabling them (and not just super admins!) to view and manage Admin Resources and Admin Attributes.

For enhanced control, a new resource is in the works! Super admins can grant sub admins the power to configure SAML Single Sign-On. By default, this resource is disabled, ensuring flexibility and security. Available for both end users and MSSPs, it's a game-changer in access management!