Page contents
Use Sendmarc’s DMARC policy management feature to simplify the creation and monitoring of your business’s Domain-based Message Authentication, Reporting, and Conformance (DMARC) policy. Strengthen email security and improve deliverability – without complex technical hurdles.
Get started today to:
Secure your emails and build trust with Sendmarc’s expert solutions.
A DMARC policy is a set of rules that domain owners publish in the DNS. These rules instruct receiving email servers on how to handle messages that fail authentication checks. DMARC helps prevent domain spoofing, phishing, and other email-based threats by specifying whether to deliver, quarantine, or reject unauthenticated messages.
Organizations globally rely on DMARC to:
Without DMARC, cybercriminals can impersonate your domain to send fraudulent messages – putting your company, partners, and customers at risk.
By enforcing DMARC, domain owners gain control over how unauthenticated emails are handled, reducing risk and strengthening their email security posture.
p
tag in the DMARC record. There are three policy options:
Policy | Effect on failing emails |
---|---|
none |
Delivers all emails, including unauthenticated ones; generates reports for analysis |
quarantine |
Moves failing emails to recipients’ Spam or Junk folders |
reject |
Rejects emails that fail DMARC checks completely |
p=none
allows businesses to monitor their email environments and identify legitimate sources without affecting delivery. Gradually progressing to quarantine
and eventually reject
reduces the risk of blocking valid messages while strengthening security. DMARC works by validating the ‘From’ header in an email against two email authentication standards:
For a message to pass DMARC, either SPF or DKIM must pass authentication. If both protocols fail, the policy instructs the receiving server on how to handle the message.
DMARC header validation summary:
Simplify DMARC adoption today with Sendmarc
To publish a policy:
p
tag (none
, quarantine
, or reject
)rua
(aggregate) and ruf
(forensic) tagsHost | Type | Value |
---|---|---|
_dmarc.yourdomain.com | TXT | v=DMARC1; p=reject; rua=mailto:[email protected]; fo=1; |
Use DMARC validation tools to confirm that the record is correctly published.
To strengthen enforcement over time:
p
tag from none to quarantine and eventually rejectpct
tag to gradually apply the policy to a percentage of emailsSign up for Sendmarc’s email security solutions to access expert guidance and automated tools for DMARC setup, monitoring, and optimization.
Or book a demo today to secure your organization’s email environment.
A DMARC policy is a set of rules published in the DNS that instructs email receivers on how to handle messages that fail authentication checks. DMARC helps prevent domain spoofing, phishing, and other forms of email fraud.
p
tag with a policy of none
, quarantine
, or reject
. p
tag in the existing DMARC TXT record to a new policy value (none
, quarantine
, or reject
). Use the pct
tag to gradually apply enforcement to a percentage of emails before full implementation. To check a DMARC policy, use online DMARC record checker tools. Also, review aggregate and forensic reports sent to your company’s specified email addresses to ensure its policy is working as intended.