Email authentication

What does DMARC compliant mean?

In this blog article we will cover what DMARC compliance is and how to become DMARC compliant. In order to fully implement DMARC, being DMARC compliant is key.

What is DMARC compliance?

With DMARC it is possible to gain full insight on your email channel, choose from three different DMARC policies and protect your domains against scams and brand abuse. In order to achieve this, your emails need to be DMARC compliant. By setting up DKIM or SPF you can achieve DMARC compliance. In order to become DMARC compliant, either DKIM or SPF has to be setup correctly and align. Note that only DKIM or SPF has to be setup in order to be DMARC compliant. This means when you setup DKIM and SPF and one of the two fails, your email will still be DMARC compliant and pass the DMARC checks. Note that only setting up DKIM or SPF is not enough. It is important to make sure that DKIM and or SPF align, without alignment an email cannot be DMARC compliant. Click here for more information about alignment.

How to achieve the best compliancy

Besides using SPF, DMARC Analyzer recommends to always sign outgoing messages from your direct mail sources with a DKIM signature. Using DKIM will not only make your emails DMARC compliant, it will also help with forwarding issues. Click here for more information about forwarding.

When all your emails are DMARC compliant you can proceed your DMARC deployment and start to enforce your DMARC policy. Since your emails should be DMARC compliant, this will not result in a loss of legitimate email. To learn more about the stages of a DMARC project, click here.