DMARC Record Checker

Validate your DMARC policy, check RUA/RUF reporting addresses, and ensure your domain is protected against email spoofing and phishing using your brand.

How to Use the DMARC Record Checker

  1. Enter your domain in the scanner input.

  2. Click the DMARC tab in the Email Trust Console.

  3. Review the parsed policy (none/quarantine/reject) and reporting tags.

  4. Copy the recommended record fix if issues are detected.

DMARC Record Checker — Frequently Asked Questions

What is DMARC?
DMARC (Domain-based Message Authentication, Reporting and Conformance) is a DNS policy that tells receiving servers what to do with emails that fail SPF or DKIM checks — and how to report back.
What's the difference between p=none, p=quarantine, and p=reject?
'p=none' monitors only, 'p=quarantine' sends failing mail to spam, and 'p=reject' blocks failing mail entirely. For maximum protection, use p=reject.
What are RUA and RUF in DMARC?
RUA (Reporting URI for Aggregate) receives daily aggregate reports from receiving mail servers. RUF (Reporting URI for Forensic) receives individual failure reports. Both help you monitor your email authentication.
Why does DMARC fail if SPF and DKIM pass?
DMARC requires SPF or DKIM to 'align' — the domain in the email's From header must match the authenticated domain. Forwarding services often break this alignment.
Should I start with p=none?
Yes — start with p=none to collect reports and understand your email sending ecosystem before moving to quarantine or reject. Jumping straight to p=reject can break legitimate email flows.