DMARC Policy

DMARC Policy

Spammers will often try to forge the "From" address in an email to deceive recipients and perform unlawful activities. Obviously mailbox providers want to prevent such emails landing in the inbox of their users, and email senders don't want their emails to be tampered with. The only way to achieve these goals, though, is by implementing domain authentication techniques.

DMARC (Domain-based Message Authentication Reporting and Conformance) is an authentication technique that uses the Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM) to validate emails. DMARC allows a business to publish a policy that provides instructions to the receiving servers of mailbox providers on how to handle unauthenticated emails sent from their domain.

When you implement DMARC, there are three actions you can instruct the receiving server to perform when they receive unauthenticated emails from your domain.

Take no action
You can design a policy and set it as "p=none". When a receiving server identifies an unauthenticated email, it will accept it without taking any action.

Quarantine the email
You can design a policy and set it as "p=quarantine". When the receiving server identifies an unauthenticated email, it will accept the email and store it in the quarantine folder on the server. Only the server's administrators will be able to view these emails.

Reject the email
You can design a policy and set it as "p=reject". The policy will instruct the receiving server to reject unauthenticated email. You can learn more about the email that got rejected by analyzing the DMARC failure report.

How DMARC works   

DMARC is dependent on two other email authentication techniques, SPF and DKIM. For an email to pass the DMARC validation, it must either pass the SPF authentication and alignment validation or DKIM authentication and alignment validation.

Step 1
You need to publish the DMARC policy that provides instructions to the receiving servers of mailbox providers on handling emails that violate the policy. The record may take 24 hours to get reflected.

Step 2
You need to authenticate your sender domain by implementing SPF and DKIM. If you send emails without implementing SPF and DKIM, your emails may bounce. After implementing SPF and DKIM, when you send emails, the receiving server of the mailbox provider will use the DNS to identify the DMARC record corresponding to the sender domain. The receiving server will perform the following actions:
  1. Validate the DKIM key.
  2. Verify whether the email was sent from an IP address that's listed in the SPF record.
  3. Verify whether the headers in the email message show proper domain alignment.
Step 3
‌The receiving server will apply the DMARC policy and carry out the instruction defined in the policy.

Step 4
‌The receiving server will send a report on how it handled the email to the reporting email address listed in the DMARC record.

Decoding the DMARC record  

Here's a sample DMARC record
v=DMARC1\; p=none\; rua=mailto:dmarc-aggregate@mydomain.com\; ruf=mailto:dmarc-afrf@mydomain.com\; pct=100

v - Indicates the version of DMARC that's being used.
p - Indicates the policy set by the business.
rua - Indicates the URI to which a consolidated report will be sent detailing the SPF and DKIM validation results, information about the sending and receiving domains, and the percentage of successful authentications.
ruf - Indicates the email address to which the detailed SPF/DKIM failure report will be sent.
pct - Indicates the percentage of emails on which the policy will be applied.

How to implement DMARC records

DMARC implementation consists of three steps which are described in more detail below:
  1. Validate your SPF and DKIM records
  2. Generate a DMARC record
  3. Add the record to your domain's DNS

Validate your SPF and DKIM records

You need to verify if your SPF and DKIM records are authenticated and properly aligned. Please remember that it is mandatory to set up SPF and DKIM records for your domain to implement DMARC. If either SPF/ DKIM record's authentication and alignment check fails then the DMARC test will also automatically fail.
To check the SPF / DKIM alignment:
  1. For your SPF record, ensure that the "from address" and the "return-path address" match
  2. For your DKIM record, ensure that the "from address" and the "d" tag of the record match.

Generate a DMARC record

You can use any tool recommended listed by DMARC.org to generate a new DMARC record. 

Add DMARC record to your domain's DNS

The final step is to add the DMARC record to the DNS server as a TXT record. Each domain hosting provider has a different process for completing this task. You can do this last step on your own or get your domain hosting provider to help you. 

Choose an email account to receive DMARC reports

You must choose an email account to receive reports on the performance of your email. We recommend that you use a distinct email account so that the emails do not get lost in the flood of other emails you receive on a regular basis. These reports will help you understand how your email is performing and will assist you in changing the way you communicate with your recipients.

Benefits of implementing DMARC

Implementing DMARC has the following benefits:
  1. Prevents fraudsters from using your sender domain to perform spoofing activities.
  2. Improves email deliverability as implementing DMARC will get you into the good books of mailbox providers and anti-spam service.
  3. It helps you monitor the emails you send and gives you control over how mailbox providers handle unauthenticated emails sent from your domain.
At Zoho Marketing Automation, we urge our users to implement SPF, DKIM, and DMARC, as it is the best way to safeguard your emails. Read our help article to learn more about setting up the SPF and DKIM TXT records of your sender domain.

    Access your files securely from anywhere

      Zoho CRM Training Programs

      Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.

      Zoho CRM Training
        Redefine the way you work
        with Zoho Workplace

          Zoho DataPrep Personalized Demo

          If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.

          Zoho CRM Training

            Create, share, and deliver

            beautiful slides from anywhere.

            Get Started Now


              Zoho Sign now offers specialized one-on-one training for both administrators and developers.

              BOOK A SESSION





                          Quick Links Workflow Automation Data Collection
                          Web Forms Enterprise Begin Data Collection
                          Interactive Forms Workplace Data Collection App
                          CRM Forms Customer Service Accessible Forms
                          Digital Forms Marketing Forms for Small Business
                          HTML Forms Education Forms for Enterprise
                          Contact Forms E-commerce Forms for any business
                          Lead Generation Forms Healthcare Forms for Startups
                          Wordpress Forms Customer onboarding Order Forms for Small Business
                          No Code Forms Construction RSVP tool for holidays
                          Free Forms Travel
                          Prefill Forms Non-Profit

                          Intake Forms Legal
                          Mobile App
                          Form Designer HR
                          Mobile Forms
                          Card Forms Food Offline Forms
                          Assign Forms Photography
                          Mobile Forms Features
                          Translate Forms Real Estate Kiosk in Mobile Forms
                          Electronic Forms

                          Notification Emails for Forms Alternatives Security & Compliance
                          Holiday Forms Google Forms alternative  GDPR
                          Form to PDF Jotform alternative HIPAA Forms
                          Email Forms
                          Encrypted Forms
                          Embeddable Forms
                          Secure Forms
                          Drag and Drop form builder
                          WCAG


                                            You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.




                                                Manage your brands on social media

                                                  Zoho Desk Resources

                                                  • Desk Community Learning Series


                                                  • Digest


                                                  • Functions


                                                  • Meetups


                                                  • Kbase


                                                  • Resources


                                                  • Glossary


                                                  • Desk Marketplace


                                                  • MVP Corner


                                                  • Word of the Day


                                                    Zoho Marketing Automation

                                                      Zoho Sheet Resources

                                                       

                                                          Zoho Forms Resources


                                                            Secure your business
                                                            communication with Zoho Mail


                                                            Mail on the move with
                                                            Zoho Mail mobile application

                                                              Stay on top of your schedule
                                                              at all times


                                                              Carry your calendar with you
                                                              Anytime, anywhere




                                                                    Zoho Sign Resources

                                                                      Sign, Paperless!

                                                                      Sign and send business documents on the go!

                                                                      Get Started Now




                                                                              Zoho TeamInbox Resources



                                                                                      Zoho DataPrep Resources



                                                                                        Zoho DataPrep Demo

                                                                                        Get a personalized demo or POC

                                                                                        REGISTER NOW


                                                                                          Design. Discuss. Deliver.

                                                                                          Create visually engaging stories with Zoho Show.

                                                                                          Get Started Now









                                                                                                              • Related Articles

                                                                                                              • Sender Policy Framework (SPF)

                                                                                                                Spam is a major bottleneck issue that the email marketing industry faces on a daily basis. Fraudsters often try to forge the sender address of emails and try to perform malicious activities. The only way to protect your emails and improve ...
                                                                                                              • When SPF or DKIM alignment fails

                                                                                                                A DMARC check includes SPF and DKIM alignment. If your DMARC report says that SPF or DKIM alignment has failed for your emails even though you've properly authenticated your domain with Zoho Marketing Automation, read the information below to learn ...
                                                                                                              • What to do if your domain authentication fails in Gmail

                                                                                                                An authenticated domain shows mailbox providers that your emails are genuine and not spam. To protect its users from receiving spam, Gmail checks whether the email sender domain is properly authenticated or not. If the email sender domain is not ...
                                                                                                              • DomainKeys Identified Mail (DKIM)

                                                                                                                DomainKeys Identified Mail (DKIM) is an email authentication mechanism that is deployed to prevent emails from being tampered with in transit. DKIM is widely adopted by businesses to protect their emails from spoofing and phishing attacks. How DKIM ...
                                                                                                              • Authenticate your domain

                                                                                                                At Zoho Marketing Automation, we strongly urge you to authenticate your domain by implementing SPF and DKIM. SPF Sender Policy Framework is an authentication technique that helps receiving email servers identify legitimate email senders and prevent ...
                                                                                                                Wherever you are is as good as
                                                                                                                your workplace

                                                                                                                  Resources

                                                                                                                  Videos

                                                                                                                  Watch comprehensive videos on features and other important topics that will help you master Zoho CRM.



                                                                                                                  eBooks

                                                                                                                  Download free eBooks and access a range of topics to get deeper insight on successfully using Zoho CRM.



                                                                                                                  Webinars

                                                                                                                  Sign up for our webinars and learn the Zoho CRM basics, from customization to sales force automation and more.



                                                                                                                  CRM Tips

                                                                                                                  Make the most of Zoho CRM with these useful tips.



                                                                                                                    Zoho Show Resources