Build Email Authentication into Your Product

A RESTful JSON API for DMARC, SPF, DKIM, BIMI, MTA-STS, and aggregate reporting. Manage thousands of domains and tenants programmatically – with the same engine trusted by Fortune 100 companies and MSPs worldwide.

Programmatically manage domains, users, and email security policies at scale via a secure and fully documented RESTful API.

DMARC record lookup

curl
Python
JS
# Lookup a DMARC record curl -X GET \ "https://api.powerdmarc.com/v1/dmarc?domain=example.com" \ -H "Authorization: Bearer YOUR_API_KEY"
import requests url = "https://api.powerdmarc.com/v1/dmarc" headers = {"Authorization": "Bearer YOUR_API_KEY"} params = {"domain": "example.com"} response = requests.get(url, headers=headers, params=params) print(response.json())
const response = await fetch('https://api.powerdmarc.com/v1/dmarc?domain=example.com', { method: 'GET', headers: { 'Authorization': 'Bearer YOUR_API_KEY' } }); const data = await response.json(); console.log(data);
Response · 200 OK
{ "domain": "example.com", "record": "v=DMARC1; p=reject; rua=...", "policy": "reject", "alignment": { "spf": true, "dkim": true }, "valid": true }
99.9% API uptime SLA
SOC 2 Type II Audited
10,000+ Companies
2,000+ MSPs & MSSPs
GDPR DPA Available
DMARC API Documentation Request API Access

Everything You Need, Behind One API

Extensive endpoint categories cover the full email authentication lifecycle from DNS record management to multi-tenant orchestration. Click any category to jump straight to the reference.

DMARC, SPF, DKIM, MTA-STS, TLS-RPT & BIMI Records

Generate, validate, and look up authentication records across every protocol from one consistent interface.

Explore →
Aggregate Reports & Analytics

Pull RUA report data across 7 dimensions: sending source, organization, host, country, geolocation, result, and detailed stats.

Explore →
Forensic Reports (RUF)

Stream forensic failure reports for real-time abuse detection and investigation workflows.

Explore →
Domain Management

Add, update, verify, and remove domains in bulk. Sync your inventory with internal asset databases.

Explore →
Multi-Tenant / Org Management

Provision client accounts, manage hierarchies, and isolate data across hundreds of tenants — built for MSPs.

Explore →
Users & Authentication

Programmatically manage users, roles, scoped tokens, and SSO flows.

Explore →
Threat Intelligence Feed

Tap into AI-driven threat intel. Investigate malicious sender IPs, spoofing patterns, and abuse indicators.

Explore →
Audit Logs & Billing

Query immutable audit trails for incident response and compliance, plus subscription and usage data.

Explore →

Get Started in 3 Steps

From sign-up to your first authenticated call in under five minutes.

1

Get your API key

Log in to your dashboard and generate a new key from the API Settings page.

2

Authenticate with a Bearer token

Add your API key to the Authorization header of every request.

3

Make your first call

Try a DMARC record lookup to verify your connection.

Read the full Quick Start Guide
Base URL
https://api.powerdmarc.com
Generate a DMARC Record
curl -X POST \ "https://api.powerdmarc.com/v1/dmarc/generate" \ -H "Authorization: Bearer YOUR_KEY" \ -d '{ "domain": "example.com", "policy": "reject", "rua": "mailto:[email protected]" }'

Built for the Way You Build

Pick the lane that matches your build. Single product, multi-tenant operation, or enterprise stack.

PowerDMARC — API Audience Table
For Developers

Ship without reinventing DNS parsing.

Build email authentication features directly into your product UI.

DMARC, SPF, DKIM, BIMI, and MTA-STS lookups inside your own product UI
Auto-generated records for customers during onboarding
Bulk domain validation for security audits and pen-test tools
Custom reporting dashboards using JSON or PDF report exports
OpenAPI 3.0 Postman collection cURL, Python, JS, PHP
For MSPs & MSSPs

One control plane for hundreds of tenants.

Operate your entire book of business from a single, unified platform.

Automated client onboarding — create tenants and domains in one flow
White-labeled customer dashboards powered by your own UI
Centralized billing and subscription management across the book
Full OEM embedding — make it feel like your own product
Multi-tenant API White-label & OEM Partner engineering
For Enterprises

Plug auth telemetry into your security stack.

Integrate email authentication data into the tools you already run.

DMARC aggregate and forensic data piped into any SIEM
SOAR playbooks triggered by policy misconfigurations
Automated authentication checks during M&A consolidation
Compliance evidence exports (PDF) for SOC 2 and ISO 27001
SOC 2 Type II 99.9% uptime SLA SIEM/SOAR integration

Real Calls, Real Responses

From a single DMARC lookup to full SIEM streaming and compliance exports, every example is production-ready and works against the live API.

Look up a DMARC record

Instantly check whether any domain is protected and see exactly how without leaving your product.

Generate a DMARC record

Spin up a policy-ready DMARC record in one call, perfect for onboarding flows and bulk domain rollouts.

List all domains managed

Get a real-time inventory of every domain you manage, fully paginated, so dashboards stay in lockstep.

Onboard a new client tenant

Create a client workspace, issue a scoped token, and add their root domain in a single flow.

Stream aggregate data

Pipe DMARC telemetry straight into Splunk, Sentinel, or any HEC-compatible collector for real-time insights.

Export audit logs

Pull immutable, date-scoped audit trails on demand – the evidence your compliance teams need.

See all endpoints
Spec Details
Base URL https://api.powerdmarc.com
Protocol HTTPS only (TLS 1.2+)
Authentication Bearer token (scoped, revocable)
Format JSON request and response; PDF export available
Rate Limits 1,000 requests/minute (Enterprise), 100/min (Standard)
Pagination Cursor-based, default 50 items, max 500
Webhooks Available for report events, policy changes, domain status updates
SDKs/Tools Swagger UI, Postman collection; community SDKs for Python and Node
Versioning URL-based (/v1/...); deprecation notice 6+ months ahead
Uptime SLA 99.9% (Enterprise plans)

Ready to integrate?

Browse the reference, request a key, or talk to a solutions engineer about your use case.

View API Docs Get a Token