A Domain-based Message Authentication Reporting and Conformance (DMARC) record lets you tell receiving servers what to do with outgoing messages from your organization that don't pass SPF or DKIM.
Start with a low percentage and increase gradually. This will allow you to slowly test stronger authentication policies without impacting legitimate emails. For exmple, you could start with 10%. That will instruct email providers to quarantine/reject a random 10% of emails and the remaining 90% of emails will not be impacted.
If using a DMARC monitoring service they will provide a unique email address where aggregate DMARC reports will be sent for processing.
Individual failure reports, or Forensic Reports, are copies of individual pieces of email that fail the DMARC check.
Setup DMARC Record
Follow our step-by-step instructions to setup your new DMARC record.
Now that you've successfully generated your DMARC record, complete the setup by creating a TXT record for your domain. The process will be similar for most domain registrars and hosting providers with some small differences.
Log into your Account
Navigate to the Domains page
You should see a list of all your domains; click on the domain
Click on DNS or Edit DNS
Then click on Host Records or Edit Host Records
Now you will have the option to create a new record
For the record Type select TXT
For the Host/Name field — copy and paste the DMARC Record Host or Name we generated for you
For the Content/Value field — copy and paste the DMARC Record Content or Value we generated for you
For the TTL field leave it as-is to use the default value
Click Save to complete your updates (allow up to 48 hours for your DNS changes to take full effect globally)