Docs / DMARC

DMARC Failures

The failures view surfaces emails that did not pass DMARC alignment, helping you identify unauthorized senders, misconfigured services, and spoofing attempts.

DMARC failures list
DMARC failures showing source IP, sending domain, SPF/DKIM result, and disposition.

Understanding failures

  • SPF fail — the sending IP is not in the SPF record for the domain.
  • DKIM fail — no valid DKIM signature found, or signature doesn't align with the From domain.
  • Both fail — neither SPF nor DKIM aligned. Most likely spoofing or a legitimate sender not yet configured.

Resolving failures

For each failure source, check whether it is a legitimate sender (e.g., a marketing platform or CRM) or an unauthorized source. Legitimate senders should be added to your Sender Profiles and configured with SPF/DKIM. Unauthorized sources should be blocked by tightening your policy.

← Reports DMARC Policy →