Foundation
What is DMARC?
Understand DMARC, alignment and the role of SPF and DKIM.
Technical guides
Practical guidance for teams responsible for customer domains. Start with the foundations, then move into policy progression, reporting and troubleshooting. Standards-specific articles link to the relevant primary RFC or provider documentation.
Foundation
Understand DMARC, alignment and the role of SPF and DKIM.
Foundation
A practical explanation of SPF records, mechanisms, qualifiers, DMARC alignment, forwarding limitations, and common DNS mistakes.
Updated
Foundation
A practical DKIM guide for MSPs covering selectors, provider setup, CNAME patterns, validation, rotation, and common configuration mistakes.
Updated
Operations
A practical MSP workflow for assessing, onboarding, monitoring, and progressing DMARC across customer domains.
Updated
Operations
Use DMARC aggregate-report evidence to move from monitoring towards quarantine and reject while reducing risk to legitimate mail.
Updated
Operations
Learn what DMARC aggregate and failure reports contain, how to interpret authentication patterns, and where receiver and privacy limitations apply.
Updated
Operations
Understand SPF's DNS-lookup limit, how flattening works, its maintenance risks, and safer options for reducing an oversized SPF dependency chain.
Updated
Troubleshooting
Understand DMARC, SPF, DKIM, MX, and DNS findings from a point-in-time checker and decide what to investigate next.
Updated
Troubleshooting
A diagnostic guide for missing DMARC aggregate or failure reports, covering DNS validity, destination authorisation, traffic, receiver support, and ingestion issues.
Updated
Troubleshooting
Learn why a receiver may deliver a DMARC-failing message after validating ARC, how local-policy results appear, and when to investigate.
Updated
Provider context
A practical WISP guide to managed DMARC scope, customer responsibilities, DNS change control, report review, policy progression, and service boundaries.
Updated
Provider context
Review the operational impact of RFC 9989, RFC 9990, and RFC 9991 on policy discovery, reports, privacy, and managed-DMARC workflows.
Updated
Provider context
A careful look at how DMARC can support an email-security programme under POPIA without being a compliance certificate or a substitute for legal advice.
Updated
Provider context
Evaluate the business case and the limits of domain authentication.
Provider context
A practical provider-led path for South African organisations.