This check evaluates publicly visible signals related to DNS configuration, email authentication (SPF, DKIM, DMARC), HTTPS certificates, and basic recoverability indicators. It takes a few seconds and does not require any access to your systems.
What does the Identity Check look at?
- DNS & nameservers — Does the domain resolve? Are nameservers redundant?
- Email authentication — SPF, DKIM, and DMARC configuration
- HTTPS & certificates — TLS validity, expiry, HSTS, and security headers
- Recoverability signals — DNSSEC, CAA, nameserver diversity
This is an external check only. It does not replace a full Identity Audit, which examines registrar controls, access management, recovery playbooks, and third-party sender governance.