Security 4 min read Article KB-SEC05

How to Set Up Email Authentication (SPF, DKIM, DMARC)

Configure SPF, DKIM, and DMARC records to improve email deliverability and prevent your domain from being used for spam.

Why Email Authentication Matters

Without proper email authentication, your emails frequently land in spam folders, and criminals can send emails that appear to come from your domain (email spoofing). SPF, DKIM, and DMARC together prevent this.

SPF (Sender Policy Framework)

SPF tells receiving mail servers which servers are authorised to send email for your domain.

In cPanel → Zone Editor, add a TXT record:

Name: @
Value: v=spf1 +a +mx include:yourhostingserver.com ~all

Or use cPanel → Email Deliverability → Repair to auto-install SPF.

DKIM (DomainKeys Identified Mail)

DKIM adds a cryptographic signature to your outgoing emails that receiving servers verify.

cPanel → Email Deliverability → Repair auto-installs DKIM for all your email-active domains.

DMARC (Domain-based Message Authentication)

DMARC tells receiving servers what to do with emails that fail SPF and DKIM checks.

Add a TXT record in Zone Editor:

Name: _dmarc
Value: v=DMARC1; p=quarantine; rua=mailto:dmarc@yourdomain.com

Tip: After setting up, use mail-tester.com to send a test email and verify your score. Aim for 10/10.

Was this article helpful?

Still need help?

If this article didn't fully answer your question, our support team is available 24/7.

Submit a Support Ticket Search FAQs

Back to Security All Articles