{"id":12779,"date":"2025-06-16T15:44:13","date_gmt":"2025-06-16T10:14:13","guid":{"rendered":"https:\/\/threatcop.com\/blog\/?p=12779"},"modified":"2026-03-13T17:12:05","modified_gmt":"2026-03-13T11:42:05","slug":"how-to-set-up-dmarc","status":"publish","type":"post","link":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/","title":{"rendered":"How to Set Up DMARC: A Step-by-Step Guide for Beginners"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">As a result of email spoofing, Phishing and Business Email Compromise (BEC) are becoming widespread, it has never been more important to safeguard your domain. Cybercriminals impersonate brands and executives to steal data, deceive employees and commit fraud against businesses. To mitigate these threats, ensure good encryption, starting with DMARC. <\/span><\/p><div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 ez-toc-wrap-center counter-hierarchy ez-toc-counter ez-toc-light-blue ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #414141;color:#414141\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #414141;color:#414141\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#What_is_DMARC\" >What is DMARC?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#Why_Do_You_Need_DMARC_for_Your_Organization\" >Why Do You Need DMARC for Your Organization?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#Increase_Email_Deliverability_and_Reputation\" >Increase Email Deliverability and Reputation<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#Avoid_Business_Email_Compromise_BEC\" >Avoid Business Email Compromise (BEC)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#Understanding_the_DMARC_Record_Format\" >Understanding the DMARC Record Format<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#How_to_Set_Up_DMARC_Step-by-Step\" >How to Set Up DMARC: Step-by-Step<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#Why_Monitoring_is_Important\" >Why Monitoring is Important<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#TDMARC_A_Smarter_and_Better_Way_to_Manage_DMARC\" >TDMARC: A Smarter and Better Way to Manage DMARC<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#3-Step_Protection_Process_using_TDMARC\" >3-Step Protection Process using TDMARC<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#Conclusion\" >Conclusion<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#Frequently_Asked_Questions\" >Frequently Asked Questions<\/a><\/li><\/ul><\/nav><\/div>\n\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">At the start of this guide, you will learn how to set up DMARC securely and correctly, even if you are not a cybersecurity expert. We will detail what DMARC is, how to configure DMARC, what records are required and how TDMARC by Threatcop can be used to simplify and safeguard the process.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_is_DMARC\"><\/span><span style=\"color: #000000;\"><b>What is DMARC?<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><a href=\"http:\/\/DMARC\">DMARC<\/a> is an acronym for an authentication protocol that stands for Domain-based Message Authentication, Reporting &amp; Conformance. DMARC enables domain owners to mitigate fraudulent emails from being delivered to a user&#8217;s inbox. In general, DMARC provides visibility into what domains are sending emails from their domain to support enhanced domain security and abuse awareness.\u00a0<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>DMARC uses two components to verify email legitimacy:<\/b><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Sender Alignment \u2013 <\/b><span style=\"font-weight: 400;\">Alignment\u201d in DMARC specifically checks if SPF\u2019s domain (Return-Path) or DKIM\u2019s domain (d=) matches the \u2018From\u2019 domain, based on policy (relaxed or strict alignment)<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>Authentication Results<\/b><span style=\"font-weight: 400;\"> &#8211; Identifies whether the email passed either SPF or DKIM authentication checks.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Why_Do_You_Need_DMARC_for_Your_Organization\"><\/span><span style=\"color: #000000;\"><b>Why Do You Need DMARC for Your Organization?<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">In this technologically advanced world, email is still the most common and most attacked method of communication. Cybercriminals take this as an opportunity to impersonate trusted brands, partners, and sometimes even internal departments such as HR and finance. One of the most common attacks used by criminals is <a href=\"https:\/\/threatcop.com\/blog\/email-spoofing-and-email-impersonation-in-cybersecurity\/\">email spoofing<\/a>. Email spoofing is sending an email that seems and looks like it comes from your domain, without permission granted to do so.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">This is where DMARC comes in. DMARC (Domain-based Message Authentication, Reporting &amp; Conformance) is also a kind of security protocol to help to secure your domain against hackers trying to impersonate your domain.&nbsp; It also ensures you are building email trust and visibility.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Here\u2019s exactly why DMARC is essential for your organization:<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Defend Against Email Spoofing and Impersonation<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Without DMARC, your domain is open to being spoofed by anyone, including cybercriminals, to send fraudulent emails. This can trick recipients into suddenly transferring funds, revealing sensitive information or clicking a link that would download malware to their device.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">DMARC protects you from email spoofing by allowing only sources you have authenticated to send emails on behalf of your domain. If someone tries to spoof your domain, you can reject the email or have it marked as spam based on which DMARC Policy you set (none, quarantine or reject).<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Gain Visibility Into The Sources Sending Email<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">DMARC provides meaningful reporting. When implemented correctly, it sends aggregate and forensics reports showing:<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">What mail servers are sending email using your domain\u200b?<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">If those emails passed <a href=\"https:\/\/threatcop.com\/blog\/spf-and-dkim\/\">SPF and DKIM<\/a> checks\u200b.<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">How do the recipient&#8217;s servers process your emails?<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">This visibility allows you to see if someone is sending email without authorization, a misconfigured system is acting on behalf of your domain or a third-party sender you were unaware of. Visibility is especially helpful during the monitoring phase of DMARC preparation when you have the policy set to none. \u200b<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Increase_Email_Deliverability_and_Reputation\"><\/span><span style=\"color: #000000;\"><b>Increase Email Deliverability and Reputation<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">One of DMARC&#8217;s hidden benefits is increased email deliverability, as email service providers (ISPs) such as Gmail, Outlook and Yahoo tend to trust emails that pass their authentication checks. The odds of your emails landing in the inbox instead of the spam folder increase significantly when the emails are authenticated properly using SPF, DKIM and DMARC.&nbsp;<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Avoid_Business_Email_Compromise_BEC\"><\/span><span style=\"color: #000000;\"><b>Avoid Business Email Compromise (BEC)<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><a href=\"https:\/\/threatcop.com\/blog\/business-email-compromise\/\">Business Email Compromise (BEC)<\/a> is a growing threat affecting companies of all sizes. The attacker impersonates an executive, vendor or internal department to trick the employee into:<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">Sending a wire transfer<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Providing confidential data<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Paying fake invoices<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">DMARC (Domain-based Message Authentication, Reporting &amp; Conformance) is a security protocol to protect your domain from hackers pretending to be your domain. It is an active and forward-thinking defence method in order to enhance your overall email security posture.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Understanding_the_DMARC_Record_Format\"><\/span><span style=\"color: #000000;\"><b>Understanding the DMARC Record Format<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Before configuring DMARC, it&#8217;s important to understand the basic structure of a DMARC record. When you create a DMARC record, you place this record in your domain&#8217;s DNS. You tell message receivers what to do with messages failing authentication checks and where to send reports about email activity with your domain. The example below is a simple DMARC record that will break down each piece.&nbsp;<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Here is an example DMARC record:<\/b><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">v=DMARC1; p=quarantine; rua=mailto:dmarc-reports@yourdomain.com<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Explanation of each part:<\/b><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">v=DMARC1: Version of the protocol<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">p=quarantine: Policy to apply (none, quarantine, reject)<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">rua: Email address to send aggregate reports<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Note: DMARC is published as a TXT record, not a CNAME.<\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>SPF and DKIM: Your Prerequisites<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">DMARC cannot work independently; it needs two other means of email authentication (SPF and DKIM) to be set up properly. Once these protocols are in their proper place, you will be able to use DMARC. Together with DMARC, they help confirm that emails are really from your domain and not modified in transit. Let&#8217;s just go over quickly what SPF and DKIM do and where they fall into the order of things.&nbsp;<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">SPF validates Mail From\/Return-Path, not the &#8216;From&#8217; header, which is why alignment is critical for DMARC.<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">DKIM adds a digital signature to authenticate the sender&#8217;s identity.<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">TDMARC\u2019s Advanced DMARC Utilities provide additional validation of SPF and DKIM records.<\/span><\/p>\n\n\n\n<!DOCTYPE html>\r\n<html lang=\"en\">\r\n\r\n<head>\r\n    <meta charset=\"UTF-8\">\r\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\r\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\">\r\n    <title>Document<\/title>\r\n<\/head>\r\n\r\n<style>\r\n    .interestedBtn {\r\n        width: 80% !important;\r\n        box-sizing: border-box !important;\r\n        display: inline-block !important;\r\n        padding: 11px !important;\r\n        border: 1px !important;\r\n        border-color: #ddd !important;\r\n        margin-top: 10px !important;\r\n        background-color: #183e8b !important;\r\n        background-image: none !important;\r\n        text-shadow: none !important;\r\n        color: #fff !important;\r\n        font-size: 14px !important;\r\n        line-height: 20px !important;\r\n        border-radius: 5px !important;\r\n        margin: 0 !important;\r\n        cursor: pointer !important;\r\n        box-shadow: 0px 4.66px 22.99px 0px rgba(0, 0, 0, 0.10);;\r\n    }\r\n\r\n\r\n        .formSec .formSecTwo{\r\n            padding-top: 15px !important;\r\n            margin-bottom: 30px !important;\r\n        }\r\n\r\n\r\n    .tnp-email {\r\n        width: 80% !important;\r\n        box-sizing: border-box;\r\n        padding: 8px 10px;\r\n        display: inline-block;\r\n        border: 1px solid #ced4da;\r\n        background: #fff;\r\n        color: #000 !important;\r\n        font-size: 13px;\r\n        line-height: 20px;\r\n        border-radius: 2px;\r\n        padding-right: 30px;\r\n        margin-bottom: 0px;\r\n    }\r\n\r\n    .formSec {\r\n        border: 1px solid #ced4da;\r\n        float: left !important;\r\n        width: 55% !important;\r\n    }\r\n\r\n    .mainBox {\r\n       \/* border: 1px solid #183e8b;*\/\r\n         background: white;\r\n        max-width: 600px !important;\r\n        margin: 0 auto !important;\r\n        padding: 20px !important;\r\n        font-family: Arial, Helvetica, sans-serif !important;\r\n    }\r\n\r\n    .boxDiv {\r\n        display: flex !important;\r\n    }\r\n\r\n    .boxConsult {\r\n        float: left !important;\r\n        width: 45% !important;\r\n        padding: 10px !important;\r\n    }\r\n\r\n    .formSecTwo {\r\n        text-align:center !important;\r\n        width: 100% !important;\r\n    }\r\n\r\n    .formHeading {\r\n        font-family: Arial, Helvetica, sans-serif;\r\n        margin-top: 0px;\r\n        font-weight: 700;\r\n        line-height: 25px;\r\n        font-size: 18px !important;\r\n        \r\n       margin-bottom: 60px !important;\r\n       color: #000!important;\r\n          margin-top: 5px !important;\r\n    }\r\n\r\n    .fieldHeading {\r\n        margin: 0 !important;\r\n        font-size: 13px !important;\r\n        text-align: left !important;\r\n        margin: 0px 39px 2px 93px !important;\r\n        font-weight: 500 !important;\r\n    }\r\n\r\n    .image {\r\n        max-width:90% !important;\r\n        height: auto !important;\r\n    }\r\n\r\n     .email-icon {\r\n            position: absolute;\r\n            right: 50px;\r\n             top: 20px;\r\n            transform: translateY(-50%);\r\n            pointer-events: none; \r\n        }\r\n\r\n          .email-container{\r\n             position: relative;\r\n         \r\n        }\r\n       \r\n\r\n        .email-icon img{\r\n                 width: 15px;\r\n        }\r\n\r\n\r\n         input::placeholder {\r\n            color:#495057;\r\n        }\r\n\r\n\r\n     ::placeholder {\r\n        color: #495057;\r\n    }\r\n\r\n        ::-ms-input-placeholder { \r\n          color:#495057;\r\n        }\r\n\r\n\r\n        input:-webkit-autofill {\r\n            background-color: transparent !important;\r\n            -webkit-box-shadow: 0 0 0px 1000px white inset !important; \r\n            box-shadow: 0 0 0px 1000px white inset !important;\r\n            color: #495057 !important; \r\n        }\r\n\r\n        \r\n        input {\r\n            color:#495057 !important;\r\n        }\r\n\r\n\r\n    @media screen and (max-width: 480px) {\r\n        .boxDiv {\r\n            display: block !important;\r\n            padding: 15px !important;\r\n         \r\n        }\r\n\r\n        .image{\r\n        width: 80% !important;\r\n         margin-bottom: 14px;\r\n        }\r\n        .fieldHeading {\r\n            text-align: left !important;\r\n            margin: unset !important;\r\n        }\r\n\r\n        .boxConsult {\r\n            width: unset !important;\r\n            float: none !important;\r\n        }\r\n\r\n        .mainBox {\r\n            border: unset !important;\r\n        }\r\n\r\n        .formSec {\r\n            float: unset !important;\r\n            width: 100% !important;\r\n        }\r\n\r\n        .formSecTwo {\r\n            text-align: center !important;\r\n        }\r\n\r\n        .tnp-email {\r\n            width: 90% !important;\r\n        }\r\n\r\n        .formHeading {\r\n            margin-bottom: unset !important;\r\n        }\r\n\r\n         .email-icon {\r\n            position: absolute;\r\n            right: 25px;\r\n            top: 58%;\r\n            transform: translateY(-50%);\r\n            pointer-events: none; \/* Make sure the icon doesn't block clicking on the input *\/\r\n        }\r\n       \r\n        .email-container{\r\n             position: relative;\r\n        }\r\n\r\n    }\r\n<\/style>\r\n\r\n<body>\r\n\r\n    <div class=\"mainBox\" box-sizing:=\"\" border-box;=\"\">\r\n\r\n        <div class=\"boxDiv\">\r\n\r\n            <div class=\"boxConsult\">\r\n                <div>\r\n                    <h3 class=\"formHeading\" style=\" font-size: 16px !important;\">\r\n                        Book a Free Demo Call with Our People Security Expert<\/h3>\r\n                <\/div>\r\n                <img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/form.svg\" class=\"image\">\r\n            <\/div>\r\n\r\n            <div class=\"formSec\">\r\n                <div class=\" formSecTwo\">\r\n                    <h4 style=\"margin-top: 0; font-size: 16px !important;\">Enter your details<\/h4>\r\n                    <div class=\"tnp tnp-subscription-minimal\">\r\n                        <form action=\"https:\/\/threatcop.com\/thankyou-blog\" method=\"get\" target=\"_blank\">\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n\r\n                                <input class=\"tnp-email\" type=\"text\" required=\"\" name=\"FullName\" value=\"\"\r\n                                    placeholder=\"Full Name\">\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon01.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"email\" required=\"\" name=\"email\" value=\"\"\r\n                                    placeholder=\"Corporate Email Id\">\r\n                                     <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon02.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"text\" required=\"\" name=\"CompanyName\" value=\"\"\r\n                                    placeholder=\"Company Name\">\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon03.svg\" class=\"img-fluid\" \/><\/span>\r\n\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"number\" required=\"\" name=\"Phone\" value=\"\"\r\n                                    placeholder=\"Phone No.\"><br>\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon04.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n                            <input type=\"hidden\" name=\"BlogForm\" value=\"BlogForm\"><br>\r\n                            <input class=\"tnp-submit interestedBtn\" name=\"submit\" type=\"submit\"\r\n                                value=\"SUBMIT\">\r\n\r\n                        <\/form>\r\n                    <\/div>\r\n                <\/div>\r\n            <\/div>\r\n\r\n        <\/div>\r\n    <\/div>\r\n\r\n<\/body>\r\n\r\n<\/html>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"How_to_Set_Up_DMARC_Step-by-Step\"><\/span><span style=\"color: #000000;\"><b>How to Set Up DMARC: Step-by-Step<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">DMARC may seem technical at first glance but once you break it down into steps, the task can be manageable (even if you are new to DNS or email authentication). What follows is a detailed step-by-step guide to properly configuring DMARC for your domain.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Step 1: Select Your DMARC Policy<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The DMARC policy determines what action to take when Emails fail authentication checks. <\/span><span style=\"font-weight: 400;\">There are three policies to select from during your initial configuration based on your existing security strategy:<\/span><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>none:<\/b><span style=\"font-weight: 400;\"> This policy is only for monitoring mail traffic. Under this policy, no action is taken on emails that fail DMARC, which is the safest option as it allows you to collect data before you enforce stricter rules.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>quarantine:<\/b><span style=\"font-weight: 400;\"> This policy takes action on suspicious emails (e.g., emails not passing DMARC validation) and re-routes them to the recipients&#8217; spam or junk folders rather than ignoring them or rejecting them outright.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>reject: <\/b><span style=\"font-weight: 400;\">This policy is the strictest. Any email that fails to pass DMARC checks will be rejected, and that email will not be delivered to the recipient. The <a href=\"https:\/\/threatcop.com\/blog\/switching-dmarc-policy-to-reject\/\">DMARC reject policy<\/a> is the strongest form of protection, but should only be implemented after monitoring for errors and validating alignment.<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Our Recommendation: <\/b><span style=\"font-weight: 400;\">Start with none, start gathering reports, and ensure SPF and DKIM alignment are working. Once you feel confident, transition to quarantine and ultimately to rejection.<\/span><\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Step 2: Create a DMARC Record<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">After you have selected your policy, you can generate your DMARC record. A DMARC record is just a line of text with a few specific instructions given to email servers.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Here is a simple example:<\/b><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">v=DMARC1; p=none; rua=mailto:dmarc@yourdomain.com; ruf=mailto:forensics@yourdomain.com; pct=100<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Definitions of parameters:<\/b><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>v=DMARC1:<\/b><span style=\"font-weight: 400;\"> indicates the version of DMARC.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>p=none:<\/b><span style=\"font-weight: 400;\"> the policy (can be none, quarantine or reject).<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>rua=mailto: <\/b><span style=\"font-weight: 400;\">dmarc@yourdomain.com: where to send aggregate reports.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>ruf=mailto: <\/b><span style=\"font-weight: 400;\">forensics@yourdomain.com: where to send forensic (or detailed fails) reports.<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>pct=100:<\/b><span style=\"font-weight: 400;\"> percentage of email messages the policy applies to (100% means all email).<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">You can create this manually but there are tools available (like TDMARC) that make this easy by creating the records and applying the correct syntax and structure, as well as a database of policies so it can be domain-specific.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Step 3: Add the DMARC Record to your DNS<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Now that you&#8217;ve created your DMARC record, you need to publish it in your DNS, so mail servers will find it and apply it. Follow these steps:<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">Log in to your DNS management console (from your domain registrar like GoDaddy, Cloudflare, Namecheap, etc.).<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Create a new TXT record.<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Set the name\/host to:<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">_dmarc.yourdomain.com<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Paste your DMARC record into the value field.<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Set TTL (Time to Live) to default or 1 hour.<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Save your changes.<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Once you save, your DNS begins publishing the DMARC policy to email servers around the world.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Step 4: Check the DMARC Record<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Verifying your DMARC record is an important step to take when you publish your DMARC record. <\/span><span style=\"font-weight: 400;\">This way, you can confirm that your DMARC record is valid and able to be detected correctly by mail servers.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">You can use third-party tools such as Google Admin Toolbox or TDMARC\u2019s Verification Utility, which is not only a means to check your DMARC record, but it can also provide deep inspection on findings for SPF\/DKIM alignment with possible misconfigurations.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">If you got an error in the tool, double-check your syntax and DNS settings. If your DMARC record is misconfigured, the risk is email delivery failure or missed reports.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Step 5: Monitor and Evaluate DMARC Reports<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Your DMARC record will start to become operational, and you will begin receiving reports from receiving mail servers to inform you of:<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">What email servers are sending email on your behalf?<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">How many emails are passing or failing DMARC checks?\u00a0<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">If unauthorized sources are attempting to spoof your domain.<\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Types of Reports<\/b><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Aggregate Reports (rua): <\/b><span style=\"font-weight: 400;\">Sent daily as a summary report showing authentication results for your emails.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Forensic Reports (ruf):<\/b><span style=\"font-weight: 400;\"> Full reports detailing specific emails that failed DMARC.<\/span><\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Why_Monitoring_is_Important\"><\/span><span style=\"color: #000000;\"><b>Why Monitoring is Important<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">In this phase, you can begin to transition from a monitoring (none) policy to enforcement (quarantine or reject) without risking legitimate email delivery.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">With TDMARC, you will not need to manually extract XML reports; it will provide them.&nbsp;<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">Scheduled Compliance reports, Daily and weekly.<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Executive level of report summaries,<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Threat Geolocation and Volume metrics,<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Source IP Threat Intelligence,\u00a0<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Lookalike Domain Detection,<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Blacklist IP Monitoring.<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">All information is critical for making informed decisions and to enforce your DMARC domain with confidence.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Common DMARC Mistakes<\/b><\/span><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">Misalignment of SPF\/DKIM and the domain<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Syntax Errors<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Reports not monitored<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Clients applying reject too soon.<\/span><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"TDMARC_A_Smarter_and_Better_Way_to_Manage_DMARC\"><\/span><span style=\"color: #000000;\"><b>TDMARC: A Smarter and Better Way to Manage DMARC<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><a href=\"https:\/\/threatcop.com\/tdmarc\">TDMARC by Threatcop<\/a> is a premium email authentication and anti-spoofing technology that helps organizations avoid BEC attacks like impersonation, CEO fraud, and invoice scams.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">TDMARC is an integral part of Threatcop\u2019s <a href=\"https:\/\/threatcop.com\/people-security-management\">People Security Management (PSM)<\/a> strategy, aligning specifically with the \u201cProtect\u201d phase of the AAPE (Assess, Aware, Protect, Empower) framework.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>TDMARC Key Features<\/b><\/span><\/h3>\n\n\n\n<h5 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Smart Controls for SPF\/DMARC\/BIMI&nbsp;<\/b><\/span><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Natively manage and optimize your domain\u2019s SPF, DMARC and BIMI records from one dashboard.&nbsp;<\/span><\/p>\n\n\n\n<h5 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Scheduled Compliance and Threat Reports<\/b><\/span><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Get regular reports that include your ongoing email authentication status and any detected threats.&nbsp;<\/span><\/p>\n\n\n\n<h5 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>BIMI Generator and Verification<\/b><\/span><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">With the BIMI generator and verification, any brand can easily generate and verify Brand Indicators for Message Identification (BIMI) to display your brand logo in supported inboxes.&nbsp;<\/span><\/p>\n\n\n\n<h5 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Lookalike Domain Detection<\/b><\/span><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Easily detect any domains that look similar to your brand and execute options to <a href=\"https:\/\/threatcop.com\/blog\/email-impersonation-attack\/\">protect from impersonation<\/a> or spoofing.\u00a0\u00a0<\/span><\/p>\n\n\n\n<h5 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Blacklist IP Monitoring&nbsp;<\/b><\/span><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">You will be able to monitor if any IPs on your behalf being sent out, will show on blacklists so you will be alerted and maintain your email reputation.&nbsp;<\/span><\/p>\n\n\n\n<h5 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Vendor DMARC Checklist&nbsp;<\/b><\/span><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">The vendor DMARC checklist provides you with an easy to that evaluates your third-party vendors&#8217; DMARC compliance and assists you in protecting your email supply chain.&nbsp;<\/span><\/p>\n\n\n\n<h5 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Threat Intelligence for Source IPs&nbsp;<\/b><\/span><\/h5>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">You can assess source IPs that send emails to your domain and could contain malicious actors and\/or unauthorized sources.&nbsp;<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"3-Step_Protection_Process_using_TDMARC\"><\/span><span style=\"color: #000000;\"><b>3-Step Protection Process using TDMARC<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>DMARC Alignment and Authentication<\/b><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">Authenticate outgoing emails by aligning SPF and DKIM with your domain.<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Verification and Policy Enforcement<\/b><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">Verify your DMARC setup and enforce your email handling policies.<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Real-Time Reporting and Threat Detection<\/b><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">See threats and email activity in real-time with detailed, actionable reports.<\/span><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><span style=\"color: #000000;\"><b>Final Checklist to Set Up DMARC Successfully<\/b><\/span><\/h3>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><td><p><span style=\"color: #000000;\"><b>Task<\/b><\/span><\/p><\/td><td><p><span style=\"color: #000000;\"><b>Done?<\/b><\/span><\/p><\/td><\/tr><tr><td><p><span style=\"font-weight: 400; color: #000000;\">SPF &amp; DKIM Configured<\/span><\/p><\/td><td><p><span style=\"font-weight: 400; color: #000000;\">\u2610<\/span><\/p><\/td><\/tr><tr><td><p><span style=\"font-weight: 400; color: #000000;\">Choose Policy (none, quarantine, reject)<\/span><\/p><\/td><td><p><span style=\"font-weight: 400; color: #000000;\">\u2610<\/span><\/p><\/td><\/tr><tr><td><p><span style=\"font-weight: 400; color: #000000;\">Generated DMARC Record<\/span><\/p><\/td><td><p><span style=\"font-weight: 400; color: #000000;\">\u2610<\/span><\/p><\/td><\/tr><tr><td><p><span style=\"font-weight: 400; color: #000000;\">Added TXT Record to DNS<\/span><\/p><\/td><td><p><span style=\"font-weight: 400; color: #000000;\">\u2610<\/span><\/p><\/td><\/tr><tr><td><p><span style=\"font-weight: 400; color: #000000;\">Verified DMARC Setup<\/span><\/p><\/td><td><p><span style=\"font-weight: 400; color: #000000;\">\u2610<\/span><\/p><\/td><\/tr><tr><td><p><span style=\"font-weight: 400; color: #000000;\">Started Monitoring Reports<\/span><\/p><\/td><td><p><span style=\"font-weight: 400; color: #000000;\">\u2610<\/span><\/p><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Conclusion\"><\/span><span style=\"color: #000000;\"><b>Conclusion<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">At this point, you&#8217;ve learned how to set up DMARC and are ready to take a step further. We recommend starting with a basic &#8220;none&#8221; policy that gives you visibility into email traffic using your domain and provides a view into who is using your domain. <\/span><span style=\"font-weight: 400;\">Once you feel confident with the reporting and insights, you can try to move to a &#8220;quarantine&#8221; or &#8220;reject&#8221; policy, and block spoofed emails to protect your organization against phishing and business email compromise (BEC) attacks.&nbsp;<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">To ease the DMARC process, I encourage you to check out <strong>TDMARC by Threatcop<\/strong>. It will automate the DMARC record generation, get all the email data in one place for monitoring, and you&#8217;ll get real-time threat intelligence all from one platform. You let TDMARC do all the heavy lifting, while you keep your domain safe and your correspondence trusted.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Frequently_Asked_Questions\"><\/span><strong>Frequently Asked Questions<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<div class=\"schema-faq wp-block-yoast-faq-block\"><div class=\"schema-faq-section\" id=\"faq-question-1750241364640\"><strong class=\"schema-faq-question\"><strong>Q: 1. What is a DMARC record, TXT or CNAME?<\/strong><\/strong> <p class=\"schema-faq-answer\">DMARC records are always published in the standard TXT record format<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1750241372034\"><strong class=\"schema-faq-question\"><strong>Q: 2. How to add a DMARC record?<\/strong><\/strong> <p class=\"schema-faq-answer\">You can create a DMARC record in a manual format or by using tools like TDMARC that will help you create it easily.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1750241382571\"><strong class=\"schema-faq-question\"><strong>Q: 3. What is the basic DMARC policy?<\/strong><\/strong> <p class=\"schema-faq-answer\">The basic DMARC policy is none. You will use this for monitoring only.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1750241397571\"><strong class=\"schema-faq-question\">Q: 4. Can I use one of SPF or DKIM on its own?<\/strong> <p class=\"schema-faq-answer\">No. DMARC will only work correctly via an action if you have SPF and DKIM set up.<\/p> <\/div> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>As a result of email spoofing, Phishing and Business Email Compromise (BEC) are becoming widespread, it has never been more important to safeguard your domain. Cybercriminals impersonate brands and executives to steal data, deceive employees and commit fraud against businesses. To mitigate these threats, ensure good encryption, starting with DMARC. At the start of this [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":12780,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[46],"tags":[391],"class_list":["post-12779","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-dmarc","tag-how-to-set-up-dmarc"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>How to Set Up DMARC: A Step-by-Step Guide for Beginners<\/title>\n<meta name=\"description\" content=\"A complete guide by Threatcop on how to set up DMARC for your domain. Learn the steps, required DNS records, and how DMARC prevents phishing and email spoofing.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Set Up DMARC: A Step-by-Step Guide for Beginners\" \/>\n<meta property=\"og:description\" content=\"A complete guide by Threatcop on how to set up DMARC for your domain. Learn the steps, required DNS records, and how DMARC prevents phishing and email spoofing.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/\" \/>\n<meta property=\"og:site_name\" content=\"Threatcop\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/\" \/>\n<meta property=\"article:published_time\" content=\"2025-06-16T10:14:13+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-03-13T11:42:05+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2025\/06\/unnamed-7.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"720\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Threatcop\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatcop\" \/>\n<meta name=\"twitter:site\" content=\"@threatcop\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Threatcop\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/\"},\"author\":{\"name\":\"Threatcop\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/person\\\/e4db27ffd37219d73fc6b40cc9d45cfa\"},\"headline\":\"How to Set Up DMARC: A Step-by-Step Guide for Beginners\",\"datePublished\":\"2025-06-16T10:14:13+00:00\",\"dateModified\":\"2026-03-13T11:42:05+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/\"},\"wordCount\":2303,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/unnamed-7.png\",\"keywords\":[\"How to Set Up DMARC\"],\"articleSection\":[\"DMARC\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#respond\"]}]},{\"@type\":[\"WebPage\",\"FAQPage\"],\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/\",\"name\":\"How to Set Up DMARC: A Step-by-Step Guide for Beginners\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/unnamed-7.png\",\"datePublished\":\"2025-06-16T10:14:13+00:00\",\"dateModified\":\"2026-03-13T11:42:05+00:00\",\"description\":\"A complete guide by Threatcop on how to set up DMARC for your domain. Learn the steps, required DNS records, and how DMARC prevents phishing and email spoofing.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#breadcrumb\"},\"mainEntity\":[{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241364640\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241372034\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241382571\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241397571\"}],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#primaryimage\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/unnamed-7.png\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/unnamed-7.png\",\"width\":1280,\"height\":720,\"caption\":\"How to Set Up DMARC\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How to Set Up DMARC: A Step-by-Step Guide for Beginners\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\",\"name\":\"Threatcop\",\"description\":\"Cybersecurity Blogs, News, Updates, and Articles\",\"publisher\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\",\"name\":\"Threatcop\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/threatcop-logo-black-1.png\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/threatcop-logo-black-1.png\",\"width\":432,\"height\":102,\"caption\":\"Threatcop\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/people\\\/Threatcop\\\/100083109892339\\\/\",\"https:\\\/\\\/x.com\\\/threatcop\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/threatcop\\\/\",\"https:\\\/\\\/www.instagram.com\\\/threatcop_official\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/person\\\/e4db27ffd37219d73fc6b40cc9d45cfa\",\"name\":\"Threatcop\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_1_1696398433.jpeg\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_1_1696398433.jpeg\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_1_1696398433.jpeg\",\"caption\":\"Threatcop\"},\"sameAs\":[\"https:\\\/\\\/threatcop.com\"]},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241364640\",\"position\":1,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241364640\",\"name\":\"Q: 1. What is a DMARC record, TXT or CNAME?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"DMARC records are always published in the standard TXT record format\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241372034\",\"position\":2,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241372034\",\"name\":\"Q: 2. How to add a DMARC record?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"You can create a DMARC record in a manual format or by using tools like TDMARC that will help you create it easily.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241382571\",\"position\":3,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241382571\",\"name\":\"Q: 3. What is the basic DMARC policy?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"The basic DMARC policy is none. You will use this for monitoring only.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241397571\",\"position\":4,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/how-to-set-up-dmarc\\\/#faq-question-1750241397571\",\"name\":\"Q: 4. Can I use one of SPF or DKIM on its own?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"No. DMARC will only work correctly via an action if you have SPF and DKIM set up.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How to Set Up DMARC: A Step-by-Step Guide for Beginners","description":"A complete guide by Threatcop on how to set up DMARC for your domain. Learn the steps, required DNS records, and how DMARC prevents phishing and email spoofing.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/","og_locale":"en_US","og_type":"article","og_title":"How to Set Up DMARC: A Step-by-Step Guide for Beginners","og_description":"A complete guide by Threatcop on how to set up DMARC for your domain. Learn the steps, required DNS records, and how DMARC prevents phishing and email spoofing.","og_url":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/","og_site_name":"Threatcop","article_publisher":"https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/","article_published_time":"2025-06-16T10:14:13+00:00","article_modified_time":"2026-03-13T11:42:05+00:00","og_image":[{"width":1280,"height":720,"url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2025\/06\/unnamed-7.png","type":"image\/png"}],"author":"Threatcop","twitter_card":"summary_large_image","twitter_creator":"@threatcop","twitter_site":"@threatcop","twitter_misc":{"Written by":"Threatcop","Est. reading time":"11 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#article","isPartOf":{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/"},"author":{"name":"Threatcop","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/person\/e4db27ffd37219d73fc6b40cc9d45cfa"},"headline":"How to Set Up DMARC: A Step-by-Step Guide for Beginners","datePublished":"2025-06-16T10:14:13+00:00","dateModified":"2026-03-13T11:42:05+00:00","mainEntityOfPage":{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/"},"wordCount":2303,"commentCount":0,"publisher":{"@id":"https:\/\/threatcop.com\/blog\/#organization"},"image":{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#primaryimage"},"thumbnailUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2025\/06\/unnamed-7.png","keywords":["How to Set Up DMARC"],"articleSection":["DMARC"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#respond"]}]},{"@type":["WebPage","FAQPage"],"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/","url":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/","name":"How to Set Up DMARC: A Step-by-Step Guide for Beginners","isPartOf":{"@id":"https:\/\/threatcop.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#primaryimage"},"image":{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#primaryimage"},"thumbnailUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2025\/06\/unnamed-7.png","datePublished":"2025-06-16T10:14:13+00:00","dateModified":"2026-03-13T11:42:05+00:00","description":"A complete guide by Threatcop on how to set up DMARC for your domain. Learn the steps, required DNS records, and how DMARC prevents phishing and email spoofing.","breadcrumb":{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#breadcrumb"},"mainEntity":[{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241364640"},{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241372034"},{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241382571"},{"@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241397571"}],"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#primaryimage","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2025\/06\/unnamed-7.png","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2025\/06\/unnamed-7.png","width":1280,"height":720,"caption":"How to Set Up DMARC"},{"@type":"BreadcrumbList","@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/threatcop.com\/blog\/"},{"@type":"ListItem","position":2,"name":"How to Set Up DMARC: A Step-by-Step Guide for Beginners"}]},{"@type":"WebSite","@id":"https:\/\/threatcop.com\/blog\/#website","url":"https:\/\/threatcop.com\/blog\/","name":"Threatcop","description":"Cybersecurity Blogs, News, Updates, and Articles","publisher":{"@id":"https:\/\/threatcop.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/threatcop.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/threatcop.com\/blog\/#organization","name":"Threatcop","url":"https:\/\/threatcop.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2026\/06\/threatcop-logo-black-1.png","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2026\/06\/threatcop-logo-black-1.png","width":432,"height":102,"caption":"Threatcop"},"image":{"@id":"https:\/\/threatcop.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/","https:\/\/x.com\/threatcop","https:\/\/www.linkedin.com\/company\/threatcop\/","https:\/\/www.instagram.com\/threatcop_official\/"]},{"@type":"Person","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/person\/e4db27ffd37219d73fc6b40cc9d45cfa","name":"Threatcop","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_1_1696398433.jpeg","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_1_1696398433.jpeg","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_1_1696398433.jpeg","caption":"Threatcop"},"sameAs":["https:\/\/threatcop.com"]},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241364640","position":1,"url":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241364640","name":"Q: 1. What is a DMARC record, TXT or CNAME?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"DMARC records are always published in the standard TXT record format","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241372034","position":2,"url":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241372034","name":"Q: 2. How to add a DMARC record?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"You can create a DMARC record in a manual format or by using tools like TDMARC that will help you create it easily.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241382571","position":3,"url":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241382571","name":"Q: 3. What is the basic DMARC policy?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"The basic DMARC policy is none. You will use this for monitoring only.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241397571","position":4,"url":"https:\/\/threatcop.com\/blog\/how-to-set-up-dmarc\/#faq-question-1750241397571","name":"Q: 4. Can I use one of SPF or DKIM on its own?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"No. DMARC will only work correctly via an action if you have SPF and DKIM set up.","inLanguage":"en-US"},"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/12779","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/comments?post=12779"}],"version-history":[{"count":1,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/12779\/revisions"}],"predecessor-version":[{"id":12781,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/12779\/revisions\/12781"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/media\/12780"}],"wp:attachment":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/media?parent=12779"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/categories?post=12779"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/tags?post=12779"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}