Set Up DMARC to Authenticate Your Emails

Article author
Dustin Nathaniel Keys
Updated

Overview

Domain-based message authentication, reporting and conformance (DMARC) is a standard email authentication method that helps you prevent hackers from spoofing your organization for malicious purposes and allows you to limit sent emails to those authenticated by your organization.

DMARC tells receiving email servers what to do with outgoing messages from your domain that don’t pass the Sender Policy Framework (SPF) or Domain Keys Identified Mail (DKIM) checks. DMARC also allows you to report on emails to ensure they aren't being spoofed.

Check out the following sections to configure your domain's DMARC settings.

Back to Top

Verify DMARC Record

Your domain's DMARC records are typically managed by your IT department or domain administrator, but you can also check DMARC records with a tool like MX Toolbox. Just enter your domain and click DMARC Lookup.

DMARC Lookup

The lookup returns your current DMARC configuration.

DMARC Results

Back to Top

Add DMARC Record

If your domain has a DMARC record, there's no need to configure it any further.

If your domain doesn't have a DMARC record, follow these steps to enable it:

Using a provider other than Google or Microsoft? DMARC setup instructions depend on your domain or email provider. Reach out to your provider for more details.

Back to Top

Next Steps

DMARC records are only one part of an email deliverability strategy. You should also set up SPF and DKIM records to further validate your organization's domain.

Back to Top