Alerts let you set up robust and customizable alert policies for your account configuration and email traffic. Setting up alerts is a great way of making sure you are always up to date with the email traffic activity of your domains.
This article provides an overview of the different types of Alerts that can be configured and explains their role in maintaining the overall health of your account. In addition to configurable Alerts, the platform includes built-in automated notifications, referred to as Smart Alerts, which are triggered by specific account activities (such as adding or removing a domain, or enabling or disabling SSO or MFA). To learn more, see the Smart Alerts article.
Access the Alerts page
Log in to your Valimail account at app.valimail.com.
Expand the Settings section on the bottom left.
Click on Alerts.
How to create an Alert
In the Alerts page, click on the Type of Alert drop-down.
Click on the Alert that you want to set up.
Click on ADD A CUSTOM ALERT.
To delete an alert, go to the Alerts page, scroll to the alert you want to remove, and click the X icon on the far right.
Alerts cannot be edited. To make changes to an existing alert, you will need to delete it and create a new one with the updated configuration.
Types of Alerts available in Monitor and Align
Each Alert you configure must be associated with an email address. You may use any valid email address; it does not need to be linked to your Enforce account. Depending on the type of Alert, additional details may also be required.
Expand each section below to see specific requirements and examples of each type of alert.
Known Sender DMARC Rate Changed (Enabled Senders DMARC)
Known Sender DMARC Rate Changed (Enabled Senders DMARC)
In Align, this Alert is titled "Enabled Senders DMARC".
This alert notifies you when an enabled sender on a specified domain reaches a defined DMARC pass rate threshold.
Threshold options include:
Passing: 95β100%
Partially Passing: 51β94% (Recommended)
Failing: 0β50%
These percentages are calculated over a rolling 30-day period. This alert helps you monitor senders that may require additional configuration, those with newly added instances, or senders that have been incorrectly configured.
Email Subject: Enabled sender DMARC rate changed
Enabled Senders DMARC - Passing
Enabled Senders DMARC - Failing
New Services Detected
New Services Detected
This alert notifies you whenever a new service begins sending email on behalf of your domain(s). We recommend that you review each new service to confirm its legitimacy and authorization.
In many cases, these services will not be authorized. However, they may also indicate that someone within your organization is attempting to configure a new service without following the established internal approval process.
Email Subject: New services detected for example.com
Suspicious Sending
Suspicious Sending
This alert is triggered when the volume of traffic originating from Unidentified IP addresses reaches a defined threshold. In most cases, traffic from unidentified sources indicates malicious activity. However, there are instances where legitimate traffic, such as from a newly configured email system, may also appear in the Unidentified Senders section.
If you suspect the traffic is legitimate, we recommend contacting our Support team. They can assist with adding the new email system to our catalog of trusted sending services, ensuring future traffic is properly classified.
This Alert can only be configured for domains that are not enforcing DMARC (p=none) and are vulnerable to spoofing attacks.
By contrast, domains enforcing DMARC with p=quarantine or p=reject instruct receiving mail gateways to take protective action against spoofing attempts. In such cases, there is no need to configure this alert. If your domain is already at enforcement and you wish to monitor spoofing levels:
Navigate to Authentication Reports > Unidentified Senders, or
Go to Reports > Unidentified Senders.
Email Subject: Suspicious senders found for example.com
