Overview
Domain-based message authentication, reporting and conformance (DMARC) is a standard email authentication method that helps you prevent hackers from spoofing your organization for malicious purposes and allows you to limit sent emails to those authenticated by your organization.
DMARC tells receiving email servers what to do with outgoing messages from your domain that don’t pass the Sender Policy Framework (SPF) or Domain Keys Identified Mail (DKIM) checks. DMARC also allows you to report on emails to ensure they aren't being spoofed.
Check out the following sections to configure your domain's DMARC settings.
Verify DMARC Record
Your domain's DMARC records are typically managed by your IT department or domain administrator, but you can also check DMARC records with a tool like MX Toolbox. Just enter your domain and click DMARC Lookup.
The lookup returns your current DMARC configuration.
Add DMARC Record
If your domain has a DMARC record, there's no need to configure it any further.
If your domain doesn't have a DMARC record, follow these steps to enable it:
- Google Workspace:
- Office 365:
Using a provider other than Google or Microsoft? DMARC setup instructions depend on your domain or email provider. Reach out to your provider for more details.
Next Steps
DMARC records are only one part of an email deliverability strategy. You should also set up SPF and DKIM records to further validate your organization's domain.