How Do I Add SPF, DKIM and DMARC Records On My Domain?

Tools for email authentication that stop spam are SPF and DKIM. SPF and DKIM make an effort to add verifiable metadata to email communications so that the type of message being sent and received may be automatically determined. If you use these settings, fewer failed delivery warnings should be received when spammers use your domain to send fake messages. They also stop spammers from creating phony emails purporting to be from your domain.

Domain Keys

DKIM (DomainKeys Identified Mail) is a means of verifying incoming email. It ensures that incoming messages are unmodified and from the sender from whom they claim to be. This feature works to prevent incoming spam messages.

SPF

The SPF (Sender Policy Framework) system allows you to specify servers and IP addresses that are authorized to send mail from your domain(s). This feature works to prevent outgoing spam messages.

Below are the steps to configure SPF and DKIM:

Login to your cPanel & access option Email >> Authentication. You will see the option to activate the above 2 utilities. Click on Enable & entry will be made in zone file for your domain on the server. If you are familiar with setting SPF records, you have option Advanced Settings to configure it accordingly.

DMARC

DMARC is TXT record that practically asks the receiver to send an email to a particular email address, if he has received spam emails from a certain domain.
You can add this record as below:

Login to your cPanel and access the Advanced DNS Zone Editor and then add TXT record. It should appear as below:

_dmarc.domain.TLD IN TXT 14400 "v=DMARC1; p=none; rua=mailto:postmaster@your_domain.com"

Here, you need to change the domain.TLD and postmaster@your_domain.com to the correct ones as per your case.

It is also possible to use custom SPF and DKIM values for your domains. The records can be added via the DNS Zone Editor in cPanel.

In this way, you can add SPF, DKIM and DMARC records on your domain.