Logo
Sign Up
Back to Glossary
Glossary Term

DMARC (Domain-based Message Authentication)

A policy that tells receiving mail servers what to do when SPF or DKIM checks fail for emails from your domain.

What is DMARC (Domain-based Message Authentication)?

DMARC (Domain-based Message Authentication, Reporting, and Conformance) is the third pillar of email authentication. While SPF and DKIM verify sender identity, DMARC tells receiving servers what to do when those checks fail.

DMARC policies can be set to three levels:

  • p=none: Monitor only - don't take action on failures (start here)
  • p=quarantine: Send failures to spam folder
  • p=reject: Block failures entirely

DMARC also enables reporting, so you can receive reports about who's sending email using your domain - helping you identify spoofing attempts.

Why It Matters

  • 1Completes the authentication trinity (SPF + DKIM + DMARC)
  • 2Protects your domain from being spoofed by spammers
  • 3Provides visibility into email authentication failures
  • 4Required by many enterprise email security systems

How to Measure

Check your DNS for a _dmarc TXT record. Use our DNS Validation tool to verify the policy is properly configured.

Related Tools

dns validation

Related Guides

dns setup basics

Related Terms

SPF (Sender Policy Framework)
A DNS record that specifies which mail servers are authorized to send email on behalf of your domain.
DKIM (DomainKeys Identified Mail)
A cryptographic signature added to emails that proves they came from your domain and weren't tampered with in transit.
DNS Records for Email
Configuration entries in your domain's DNS that control email routing and authentication.
Sender Reputation
A score assigned to your email-sending identity based on your historical sending behavior and recipient engagement.
PreviousAll TermsNext

Ready to Start Your Cold Email Campaign?

We handle the technical details - authentication, warmup, deliverability - so you can focus on writing emails that convert.

Get StartedTry Free Tools