Free DMARC Generator

Creating a DMARC record for your domain can be a bit overwhelming.
Even if you know how DMARC works, it’s easy to mistype a character and render your record useless.
But not anymore…
With our DMARC generator, generating your record is as easy as a few button clicks. And as long as you supply the tool with the correct information, your record will work.

Our DMARC generator is easy-to-use. Here are the steps to get your DMARC record:

‍Step 1: Enter your domain name

Step 2: Select your Policy Type.
‍This determines what happens to emails that fail authentication. “None” means emails pass normally, with Quarantine they’re sent to spam, and “Reject” prevents the delivery of the email altogether.

Step 3: Select your sub-domain policy. A subdomain policy in a DMARC record specifies how email from subdomains should be handled. It overrides the main domain's policy for that subdomain.

Step 4: Enter the email address you want the DMARC reports to be sent to. DMARC reports provide data on email authentication results. They help domain owners monitor and adjust their DMARC policy for improved email security.

Step 5: Choose how often you want to receive the DMARC reports

Step 6: Choose what percentage of your emails you want to apply your DMARC policy to

Step 7: Click Generate DMARC Record and check the results:

Step 8: Add the DMARC record to your domain’s DNS settings

Domain-based Message Authentication, Reporting & Conformance is an email authentication protocol that makes your emails more secure.

It helps to prevent criminals from using your domain to commit cybercrimes like phishing attacks.DMARC tells the receiving server what do with emails that fail SPF and DKIM authentication, two other email security protocols.

Receiving email servers can find this information in the DMARC record associated with a domain.

Here’s what each part of a DMARC record means:
- The host value holds your domain preceded by the DMARC prefix.
- The prefix is usually appended by your domain/hosting provider.The type is the type of DNS record. For a DMARC records, you need the TXT type.
- The value field is where things get interesting:
- The V stands for version. This is currently always DMARC1.
- The P stands for policy. Here’s where you define what to do with emails that fail authentication. As explained in the “How to use the DMARC generator” , you can pick from one of three main actions here: 1. None (emails that fail authentication get delivered normally) 2. Quarantine (Emails that fail authentication are sent to spam) 3. Reject (Emails that fail authentication do no get delivered).
- The RUA tag holds the email address you want to the DMARC reports to be sent to.The RI tag determines the reporting interval in seconds. For example, ri=604800 means you’ll receive a report every week.
- The PCT tag holds the percentage of emails that you want your DMARC policy to apply to. For example, if it’s set to 50, only half your emails will go through the authentication process.

‍DMARC generator FAQ

Why do I need a DMARC record?
‍DMARC makes your emails more secure leading to better inbox placement and more opens.

Can I use this DMARC generator for multiple domains?
You can use it on as many domains as you need.

How do I implement a DMARC record?
‍Our DMARC generator gives you the exact information you then have to add to your domain’s DNS records. Typically, you can do this in your hosting provider’s account.
‍
How long does it take for a DMARC record to become active?
‍It can up to 3 days for your DMARC to become active. However, usually it’s a matter of hours, rather than days.
‍
What other email authentication records do I need to set up?
DMARC works based on two other email authentication protocols you must set up for superior security and deliverability. These are:
- Sender Policy Framework (SPF)
- DomainKeys Identified Mail (DKIM)