DMARC setup | How to Setup DMARC?

To configure your DMARC setup, you need to start by creating a DMARC record. As complicated as it may sound, the process for how to setup DMARC is comparatively straightforward! DMARC is a TXT (text) record that can be published on your DNS following a few simple steps to configure the protocol for your domain.

To create a free record use our DMARC generator tool:

  • Choose your DMARC policy
  • Click on “Generate”
  • Copy the TXT record to the clipboard and paste it on your DNS to activate the protocol

Manual DMARC Setup

Here is an example of how to manually configure your DMARC setup:

DMARC record example:

v=DMARC1; p=reject; adkim=s; aspf=s; rua=mailto:[email protected]; ruf=mailto:[email protected]; pct=100; fo=0;

Note: While beginning your email authentication journey, you can keep your DMARC policy (p) at none instead of reject, to monitor your email flow and resolve issues before shifting to a strict policy.

Learn how to publish DMARC record on your DNS.

How to Setup DMARC Easily with PowerDMARC

When you create an account on PowerDMARC, we handle protocol implementation and setup for you. We also manage and monitor the health of your domain and emails, parse your aggregate reports and organize your authentication results on a dedicated dashboard.

If you don’t want to go through the hassle of a manual setup, you can automate the process by taking a free 15-day trial with us.

Why is DMARC Needed in the Current Situation?

The FBI’s Internet Crime Complaint Center of 2020 (FBI IC3 Report 2020) reported that 28,500 complaints were received in the US pertaining to email-based attacks. The FBI investigated e-mail scam attacks describing the Coronavirus Aid, Relief, and Economic Security Act (CARES Act), which strived to provide assistance to small businesses during the pandemic. These attacks specifically targeted unemployment insurance, Paycheck Protection Program (PPP) loans and Small Business Economic Injury Disaster Loans.

Did You Know?

  • 75% of organizational domains from all around the world were spoofed in 2020 to send phishing emails to victims
  • 74% of those phishing campaigns were successful
  • The frequency of BEC has increased by 15% since last year
  • IBM reported that one in every 5 companies in the last year has experienced data breaches caused by malicious emails

Every 14 seconds, an organizational domain is spoofed by an attacker to send out phishing emails to receivers who trust them. This is why email authentication is a mandatory addition to your security.

Check your domain right now to see how protected you are against email fraud!

Leveraging DMARC to Prevent Domain Spoofing

Note that if you are configuring DMARC to stop your domain from being Spoofed and keep phishing and BEC attacks at bay, we recommend you select the following criterion while generating your DMARC record with our DMARC record generator tool:

Set your DMARC policy to p=reject

When you are opting for DMARC enforcement at your organization by choosing a reject policy, this means that whenever an email sent from your domain fails DMARC authentication checks and fails DMARC, the malicious email would be instantly rejected by the receiving MTA, instead of being delivered to your receiver’s inbox.

Another factor that you would want to consider is gaining visibility on your email flow and monitoring emails passing and failing authentication. DMARC reporting ensures that you never miss a malicious activity on your domain and you stay informed at all times. To enjoy the benefits of email authentication, and setup DMARC in a way that would effectively protect your domain, sign up with DMARC analyzer today!