Home  »  Blog  »  Office 365  »  How to Add DMARC Record for Office 365?

How to Add DMARC Record for Office 365?

admin | Office 365 | 3 minutes read | Modified on: 27-01-2026

Emails have become one of the effective means of communication for businesses or organizations. But it is also one of the easiest targets for hackers. They often attempt to spoof your domain, deceive customers, send fake messages and damage your trust. This is where DMARC emerges as your digital protection.

Setting up DMARC makes sure that your domain is shielded against unauthorized use by imposters. This will guide in protecting your brand, your customers and your complete internal email system. In the blog post, we will guide you through the process of adding DMARC record in Office 365.

Overview – DMARC and its Importance

DMARC stands for Domain-based Message Authentication, Reporting, and Conformance) help email servers in verifying whether an email is genuinely originated through a domain or not.

Along with it works –

  • DKIM (also DomainKeys Identified Mail)
  • SPF (also Sender Policy Framework)

Together, they validate

  • Valid emails get delivered.
  • Uncertain emails are either flagged or blocked.
  • Admin users receive reports to monitor banned activity.

Consider DMARC as a domain’s security guard who verify IDs at the door.

Validate SPF and DKIM before Adding DMARC Record in Microsoft 365

Authenticate your SPF Record is Set

At first, access your DNS host and verify that your SPF record includes Office 365:

V=spf1 includes spf.protection.outlook.com-all

Allow DKIM in Microsoft 365

  1. Go to Microsoft 365 Defender Admin Center.
  2. Navigate towards Email Authentication and tap DKIM.
  3. Select your domain and press Enable.

SPF mentions authorized senders. DKIM confirms that your email hasn’t verified.

Now, DMARC integrates it all together.

Working Tutorial to Add DMARC in Microsoft Office 365

DMARC is configured using DNS TXT record.

Process 1. Login to DNS Management Panel

Maybe this:

  • Cloudfare
  • GoDaddy
  • Google Domains
  • Namecheap
  • Hosting provider’s DNS Panel
Process 2. Adding New TXT Record
Process 3. Save the Record

Now, DMARC is active.

Maybe it requires 4 to 48 hours to propagate.

DMARC Policies Explained: (Pick whatever look best to you)

Full Protection Example (Recommended After Monitoring)

v=DMARC1; p=reject; rua=mailto:dmarc-reports@yourdomain.com;adkim=s; aspf=s; pct=u8 1

You’ll start with p=none, watch reports, then move up to p=quarantine and then p=reject for complete protection.

Note. Ensure to Protect Email Data as well.

DMARC offer protection for “who is allowed to send emails from your domain, but it won’t protect the data itself.”

Retention Limits, Ransomware, Accidental Deletion or human error can cause data loss.

So, it is advisable to merge security setup with a dependable and perfect solution such as MacMister Office 365 Email Backup Software Mac & Windows. It allows backup Office 365 mailboxes into different saving options such as MBOX, PST, MHT, MSG, HTML, and more with complete precision and reliability.

The tool is easy, user-friendly, and safe to operate. Both technical and novice users can perform the operation without trouble and backup mailboxes from Office 365 environment with ease.

Epilogue

In the write-up, you are informed about how to add DMRC record for Office 365. It is essential to safeguard domain from spoofing attacks, ensuring email integrity and enhancing email reliance. By setting up SPF, turning on DKIM and adding DMARC TXT record, one will provide your domain a secured identity and verify only legit senders can use it.