How does dormakaba keep email security strong through multiple acquisitions?

Mergers and acquisitions (M&A) can boost growth, expand market share, and streamline supply chains. However, they also introduce complex security challenges, especially for email authentication across dozens of domains. Dormakaba, a global leader in access solutions, faced this exact dilemma after merging DORMA and Kaba in 2015 and acquiring several smaller firms.

What security risks arise during M&A?

When companies combine, legacy email systems and third‑party services often remain disconnected. Inconsistent SPF, DKIM, and DMARC configurations can expose the merged entity to spoofing and phishing attacks. A single misconfigured domain can jeopardize the entire brand, leading to data breaches, regulatory fines, and loss of customer trust.

Why did dormakaba need a centralized email‑security solution?

Dormakaba manages over 65 corporate domains and dozens of cloud‑based email services across its global workforce. Without a single pane of glass, the security team struggled to track who was sending mail on behalf of each domain. Centralization was essential to enforce consistent authentication policies and to scale as the company continued to acquire new businesses.

How does the SPF 10‑lookup limit affect large enterprises?

Standard SPF records can contain a maximum of ten DNS lookups. Dormakaba’s rapid acquisition pace added many new email‑sending services, quickly exhausting this limit and causing legitimate mail to fail authentication. The result was reduced deliverability and increased risk of spoofed emails slipping through.

How did Palisade solve the SPF lookup challenge?

Palisade’s automated platform generates custom SPF records in real time, removing the ten‑lookup restriction entirely. By dynamically authorizing each sender, the solution ensures every outbound message passes SPF checks without manual DNS updates. This flexibility lets dormakaba add new services instantly while maintaining a strong authentication posture.Learn more about SPF management with Palisade

What role do DKIM and DMARC play in dormakaba’s strategy?

DKIM cryptographically signs each email, proving it originated from an authorized source. DMARC builds on DKIM and SPF to give domain owners visibility and control over fraudulent messages. Dormakaba implemented both protocols across all domains, enabling the security team to monitor and enforce policies from a single dashboard.Explore DKIM solutions from Palisade Check your DMARC health with Palisade

How does Palisade provide visibility into email traffic?

The platform continuously scans DNS records and inbound mail flows, surfacing any unauthorized senders using dormakaba’s domains. Alerts are routed to the appropriate business owners, who can then remediate misconfigurations or revoke access. This proactive approach turned a reactive security posture into a preventive one.

What benefits did dormakaba see after adopting Palisade?

Within months, dormakaba achieved full DMARC enforcement and eliminated SPF‑related delivery failures. The security team gained real‑time insight into over 200 email‑sending services, reducing manual effort by 80 %. Executive leadership now receives concise reports that demonstrate a robust brand‑protection program.

Can the solution scale with future acquisitions?

Yes. Palisade’s cloud‑native architecture automatically discovers new domains and services as they are added, applying the same authentication policies without additional configuration. This ensures that each new business unit inherits the same security standards from day one.

What’s the key takeaway for other enterprises?

When growth comes through M&A, unified email authentication is non‑negotiable. Automating SPF, DKIM, and DMARC at scale prevents brand abuse, improves deliverability, and safeguards compliance. A single, intelligent platform like Palisade makes this possible without overwhelming IT resources.

Quick Takeaways

• Multiple acquisitions can break existing email‑authentication policies.
• Standard SPF limits (10 lookups) quickly become a bottleneck for large enterprises.
• Palisade generates dynamic SPF records, removing lookup constraints.
• Implementing DKIM and DMARC across 65+ domains gave dormakaba full visibility.
• Automated alerts helped identify and remediate unauthorized senders.
• Result: 80 % reduction in manual effort and full DMARC enforcement.
• The solution scales automatically with future mergers.

Frequently Asked Questions

What is DMARC and why does it matter?DMARC tells receiving mail servers how to handle messages that fail SPF or DKIM checks. It protects your brand from phishing and improves inbox placement. Check your DMARC score with Palisade.How does Palisade handle SPF limits?Palisade creates custom SPF records on the fly, eliminating the ten‑lookup cap and ensuring all legitimate senders are authorized.Do I need to manually configure each new service?No. The platform automatically discovers new email‑sending services and applies the appropriate authentication policies.Can I see which business unit is sending email?Yes. Palisade tags each sender with its owning department, giving you granular visibility and accountability.Is there a free trial?Start with Palisade’s free DMARC monitoring to assess your current posture before upgrading.Explore Palisade solutions