{"id":59272,"date":"2026-03-02T13:23:48","date_gmt":"2026-03-02T13:23:48","guid":{"rendered":"https:\/\/easydmarc.com\/blog\/?p=59272"},"modified":"2026-03-02T13:46:56","modified_gmt":"2026-03-02T13:46:56","slug":"risk-free-dmarc-enforcement-webinar-qa","status":"publish","type":"post","link":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/","title":{"rendered":"Answering Your Webinar Questions: Risk-Free DMARC Enforcement"},"content":{"rendered":"\n<p>During our recent webinar, \u201c<a href=\"https:\/\/easydmarc.com\/blog\/webinar\/risk-free-dmarc-enforcement\/\" target=\"_blank\" rel=\"noreferrer noopener\">Risk-Free DMARC Enforcement: The Ins and Outs of DMARC Policies,<\/a>\u201d we covered a wide range of topics on DMARC and successful enforcement. We had a fantastic Q&amp;A session, but there were still some interesting questions that we couldn\u2019t address due to time constraints.<\/p>\n\n\n\n<p>In this blog post, we\u2019ve brought together the most intriguing unanswered questions from the webinar and provided detailed answers to help you deepen your understanding of DMARC, email security, and best practices.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-q-amp-a-from-the-webinar\"><strong>Q&amp;A from the Webinar<\/strong><\/h2>\n\n\n\n<div class=\"schema-faq wp-block-yoast-faq-block\"><div class=\"schema-faq-section\" id=\"faq-question-1772457726331\"><strong class=\"schema-faq-question\">Will DMARC help with the deliverability of email forwarders? I have around 130 email forwarders that do not always get delivered to our email accounts. It happens most commonly with Gmail, but can happen with other email providers, too.<\/strong> <p class=\"schema-faq-answer\">It can help, but DMARC alone doesn\u2019t fix forwarding because SPF breaks and DKIM often gets modified. The reliable solution is to preserve DKIM and\/or enable ARC on the forwarding servers. That\u2019s what improves Gmail delivery the most.<br \/>In forwarding scenarios, DKIM is more reliable than SPF, because SPF will always fail once the message is resent by another server. As long as DKIM is configured correctly and passes both authentication and alignment, DMARC can still pass, and the emails can be delivered successfully.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772457751880\"><strong class=\"schema-faq-question\">What is the advice on DMARC policies for small businesses that have clients with email general domains like gmail.com, outlook.com, or hotmail.com?<\/strong> <p class=\"schema-faq-answer\">You can\u2019t publish or enforce DMARC for those domains; only the domain owner can. So your DMARC policy applies only to your own business domain.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772457791733\"><strong class=\"schema-faq-question\">How does this work for emails set up on a web host? For example, my company uses Bluehost for the website, and our emails are set up through them, too. How does dmarc enforcement work in this case?<\/strong> <p class=\"schema-faq-answer\">DMARC is set in your domain\u2019s DNS, so it works the same even if your email is hosted with Bluehost. As long as Bluehost is included in your SPF and DKIM is enabled for your domain, your legitimate emails will pass DMARC.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772457840564\"><strong class=\"schema-faq-question\">How do we know when to move from p=none to p=quarantine and when to move to p=reject? What metrics do I need to monitor?<\/strong> <p class=\"schema-faq-answer\">Move to DMARC enforcement when your reports show that all legitimate sending sources are passing authentication \u2014 ideally with DKIM alignment (and SPF where possible) \u2014 and any remaining failures are only from unauthorized sources.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772457873315\"><strong class=\"schema-faq-question\">How is BIMI related to DMARC, and is it worth setting up?<\/strong> <p class=\"schema-faq-answer\">BIMI works on top of DMARC. You must have DMARC enforcement (p=quarantine or p=reject) for BIMI to display your logo in supporting inboxes. You can read about BIMI here in <a href=\"https:\/\/easydmarc.com\/blog\/how-to-create-bimi-record-step-by-step-guide\/\" target=\"_blank\" rel=\"noreferrer noopener\">this article.<\/a><\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772457906488\"><strong class=\"schema-faq-question\">Right now, we&#8217;re using SendGrid. Is there any other way to improve DMARC?\u00a0<\/strong> <p class=\"schema-faq-answer\">Move to DMARC enforcement once all legitimate mail sent through SendGrid (and any other approved services) is consistently passing SPF and especially DKIM with alignment, and you have dedicated DMARC RUA and RUF addresses in place to receive and analyze the reports so you have a complete overview of all sending sources and can properly authenticate and align them before enforcing.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772457944921\"><strong class=\"schema-faq-question\">We\u2019ve been on p=quarantine for 6+ months, and we have a DMARC alignment rate of 96%, so we\u2019re considering moving to p=reject. What will happen to \u201cforwarded\u201d emails when using p=reject?<\/strong> <p class=\"schema-faq-answer\">Forwarding typically breaks SPF, so as long as the original message keeps a valid, aligned DKIM signature, it will still pass DMARC and be delivered; only forwarded messages without aligned DKIM (and no ARC to vouch for them) are likely to be rejected.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772457975803\"><strong class=\"schema-faq-question\">External verification failed! To receive DMARC Aggregate reports at &#8220;***@nctius.com&#8221; email, you must publish a &#8220;v=DMARC1&#8221; TXT record for the &#8220;jxncti.com._report._dmarc.nctius.com&#8221; subdomain. Ensure proper configuration for DMARC reporting.\u00a0<\/strong> <p class=\"schema-faq-answer\">This can be resolved by checking <a href=\"https:\/\/easydmarc.com\/blog\/fix-external-verification-failure-in-easydmarc\/\" target=\"_blank\" rel=\"noreferrer noopener\">this article<\/a>.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772457989431\"><strong class=\"schema-faq-question\">SPF &amp; DKIM configuration &#8211; how much does it impacts DMARC configuration? Any recommendations you can share?<\/strong> <p class=\"schema-faq-answer\">SPF and DKIM are the foundation of DMARC \u2014 without them properly configured, DMARC cannot pass, and enforcement will break legitimate mail. To better understand this topic, check out <a href=\"https:\/\/easydmarc.com\/blog\/whats-the-difference-between-spf-dkim-and-dmarc\/\" target=\"_blank\" rel=\"noreferrer noopener\">this article<\/a> on SPF, DKIM &amp; DMARC.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772458006172\"><strong class=\"schema-faq-question\">\u00a0If I never send emails from a domain, what\u2019s the best setting?<\/strong> <p class=\"schema-faq-answer\">If your domain never sends email, the best practice is to set its DMARC policy to p=reject and ensure valid RUA and RUF addresses so you can monitor and receive reports of any spoofing attempts.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772458065988\"><strong class=\"schema-faq-question\">Why do most mail servers do not send failure reports (ruf tag)?\u00a0<\/strong> <p class=\"schema-faq-answer\">Most mail servers don\u2019t send DMARC failure (RUF) reports because they contain sensitive information, including the From\/To addresses and the full content of the email, which could expose users\u2019 data and compromise message integrity, so major providers generally don\u2019t support them.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772458103959\"><strong class=\"schema-faq-question\">Do I need to review the email sent XML, or just look in my EasyDMARC dashboard?<\/strong> <p class=\"schema-faq-answer\">As long as your RUA and RUF addresses are included in your DMARC record, you don\u2019t really need to manually review the raw XML reports. EasyDMARC will automatically parse them into a human-readable dashboard that shows all sending sources, pass\/fail status, and alignment, so you can monitor everything without opening the XML files.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772458119323\"><strong class=\"schema-faq-question\">Can you comment on SPF All tag qualifiers?\u00a0<\/strong> <p class=\"schema-faq-answer\">The SPF all qualifier determines how strict receiving servers should treat mail from IPs not listed in your SPF record. Read more here in <a href=\"https:\/\/easydmarc.com\/blog\/what-is-an-spf-record\/#:~:text=to%20provide%20reasons.-,Qualifiers,-Each%20mechanism%20can\" target=\"_blank\" rel=\"noreferrer noopener\">this article<\/a>.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772458161757\"><strong class=\"schema-faq-question\">Could you elaborate a bit on the difference between SPF Authentication and Alignment, please?<\/strong> <p class=\"schema-faq-answer\">SPF Pass\/Fail results depend on two factors: Authentication and Alignment.<br \/>Authentication: Confirms that the sending IP or host is authorized to send email for the domain listed in the SPF record. For example, if an email is sent from example.com, SPF checks whether that IP is included in the SPF record for example.com.<br \/>Alignment: Ensures that the domain in the visible From: header aligns with the domain used for SPF authentication (MAIL FROM \/ Return-Path). For instance, if the email\u2019s From: address is info@example.com, the SPF authentication must pass for a domain that matches or is properly aligned with example.com to satisfy DMARC.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1772458181258\"><strong class=\"schema-faq-question\">I get domain reports in xml or other formats that I cannot read. Are there human-readable domain reports?<\/strong> <p class=\"schema-faq-answer\">DMARC reports are XML documents that provide information about the authentication status of DMARC, SPF, and DKIM. <a href=\"https:\/\/uac.easydmarc.com\/realms\/easydmarc\/protocol\/openid-connect\/auth?client_id=dmarc-app&amp;scope=openid&amp;response_type=code&amp;redirect_uri=https%3A%2F%2Fapp.easydmarc.com%2Flogin%2Fcallback&amp;state=eyJ1c2VySXAiOiIxOTUuMjUwLjcxLjIxMCIsImdvVXJsIjoiIiwibG9naW5PcHRpb25zIjp7fX0%3D&amp;code_challenge=tieFNbnnnlbJUe_z1i56EFBOOOe5OoGFD2Le9IK6Fgw&amp;code_challenge_method=S256\" target=\"_blank\" rel=\"noreferrer noopener\">Sign up for free<\/a> and start reading your DMARC reports with EasyDMARC\u2019s report analyzer.\u00a0<\/p> <\/div> <\/div>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-final-thoughts\"><strong>Final Thoughts<\/strong><\/h2>\n\n\n\n<p>DMARC enforcement is still one of the most misunderstood and delayed steps in email security. Not because organizations don\u2019t know what DMARC is but because enforcing policies is often seen as risky, complex, and easy to get wrong.<\/p>\n\n\n\n<p>If you\u2019d like to go deeper, explore our knowledge base, <a href=\"https:\/\/easydmarc.com\/contact-us\" target=\"_blank\" rel=\"noreferrer noopener\">take a free consultation<\/a> with our team, or check out our platform to simplify and strengthen your email security journey.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>During our recent webinar, \u201cRisk-Free DMARC Enforcement: The &#8230;<\/p>\n","protected":false},"author":57,"featured_media":59273,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[204,203],"tags":[],"class_list":["post-59272","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","category-email-security"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.3 (Yoast SEO v27.4) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Risk-Free DMARC Enforcement: Webinar Q&amp;A | EasyDMARC<\/title>\n<meta name=\"description\" content=\"Get expert answers from our DMARC webinar. Learn how to move from p=none to p=reject, handle forwarding, BIMI, SPF, DKIM, and improve deliverability safely.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Answering Your Webinar Questions: Risk-Free DMARC Enforcement\" \/>\n<meta property=\"og:description\" content=\"Get expert answers from our DMARC webinar. Learn how to move from p=none to p=reject, handle forwarding, BIMI, SPF, DKIM, and improve deliverability safely.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/\" \/>\n<meta property=\"og:site_name\" content=\"EasyDMARC\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/EasyDMARC\/\" \/>\n<meta property=\"article:published_time\" content=\"2026-03-02T13:23:48+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-03-02T13:46:56+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/easydmarc.com\/blog\/wp-content\/uploads\/2026\/03\/Featured-Image-1440x9101-1.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1440\" \/>\n\t<meta property=\"og:image:height\" content=\"910\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Nshan Manoukian\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@easydmarc\" \/>\n<meta name=\"twitter:site\" content=\"@easydmarc\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Nshan Manoukian\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/\"},\"author\":{\"name\":\"Nshan Manoukian\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/#\\\/schema\\\/person\\\/3cec4e845c1321726a7cc2f10d4c5e3e\"},\"headline\":\"Answering Your Webinar Questions: Risk-Free DMARC Enforcement\",\"datePublished\":\"2026-03-02T13:23:48+00:00\",\"dateModified\":\"2026-03-02T13:46:56+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/\"},\"wordCount\":1162,\"publisher\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/03\\\/Featured-Image-1440x9101-1.png\",\"articleSection\":[\"Blog\",\"Email Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#respond\"]}]},{\"@type\":[\"WebPage\",\"FAQPage\"],\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/\",\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/\",\"name\":\"Risk-Free DMARC Enforcement: Webinar Q&A | EasyDMARC\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/03\\\/Featured-Image-1440x9101-1.png\",\"datePublished\":\"2026-03-02T13:23:48+00:00\",\"dateModified\":\"2026-03-02T13:46:56+00:00\",\"description\":\"Get expert answers from our DMARC webinar. Learn how to move from p=none to p=reject, handle forwarding, BIMI, SPF, DKIM, and improve deliverability safely.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#breadcrumb\"},\"mainEntity\":[{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457726331\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457751880\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457791733\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457840564\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457873315\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457906488\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457944921\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457975803\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457989431\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458006172\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458065988\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458103959\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458119323\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458161757\"},{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458181258\"}],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#primaryimage\",\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/03\\\/Featured-Image-1440x9101-1.png\",\"contentUrl\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/03\\\/Featured-Image-1440x9101-1.png\",\"width\":1440,\"height\":910},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/easydmarc.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Blog\",\"item\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/category\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Email Security\",\"item\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/category\\\/blog\\\/email-security\\\/\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Answering Your Webinar Questions: Risk-Free DMARC Enforcement\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/\",\"name\":\"EasyDMARC\",\"description\":\"Blog\",\"publisher\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/#organization\",\"name\":\"EasyDMARC\",\"url\":\"https:\\\/\\\/easydmarc.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"url\":\"https:\\\/\\\/easydmarc.com\\\/img\\\/logo.png\"},\"image\":{\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/EasyDMARC\\\/\",\"https:\\\/\\\/x.com\\\/easydmarc\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/easydmarc\\\/mycompany\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/#\\\/schema\\\/person\\\/3cec4e845c1321726a7cc2f10d4c5e3e\",\"name\":\"Nshan Manoukian\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/b48a8730c40c3d047a7ce369ac08784b0ebfedd540b86da9801538e8855f5763?s=96&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/b48a8730c40c3d047a7ce369ac08784b0ebfedd540b86da9801538e8855f5763?s=96&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/b48a8730c40c3d047a7ce369ac08784b0ebfedd540b86da9801538e8855f5763?s=96&r=g\",\"caption\":\"Nshan Manoukian\"},\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/author\\\/nshan\\\/\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457726331\",\"position\":1,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457726331\",\"name\":\"Will DMARC help with the deliverability of email forwarders? I have around 130 email forwarders that do not always get delivered to our email accounts. It happens most commonly with Gmail, but can happen with other email providers, too.\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"It can help, but DMARC alone doesn\u2019t fix forwarding because SPF breaks and DKIM often gets modified. The reliable solution is to preserve DKIM and\\\/or enable ARC on the forwarding servers. That\u2019s what improves Gmail delivery the most.<br>In forwarding scenarios, DKIM is more reliable than SPF, because SPF will always fail once the message is resent by another server. As long as DKIM is configured correctly and passes both authentication and alignment, DMARC can still pass, and the emails can be delivered successfully.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457751880\",\"position\":2,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457751880\",\"name\":\"What is the advice on DMARC policies for small businesses that have clients with email general domains like gmail.com, outlook.com, or hotmail.com?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"You can\u2019t publish or enforce DMARC for those domains; only the domain owner can. So your DMARC policy applies only to your own business domain.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457791733\",\"position\":3,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457791733\",\"name\":\"How does this work for emails set up on a web host? For example, my company uses Bluehost for the website, and our emails are set up through them, too. How does dmarc enforcement work in this case?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"DMARC is set in your domain\u2019s DNS, so it works the same even if your email is hosted with Bluehost. As long as Bluehost is included in your SPF and DKIM is enabled for your domain, your legitimate emails will pass DMARC.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457840564\",\"position\":4,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457840564\",\"name\":\"How do we know when to move from p=none to p=quarantine and when to move to p=reject? What metrics do I need to monitor?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"Move to DMARC enforcement when your reports show that all legitimate sending sources are passing authentication \u2014 ideally with DKIM alignment (and SPF where possible) \u2014 and any remaining failures are only from unauthorized sources.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457873315\",\"position\":5,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457873315\",\"name\":\"How is BIMI related to DMARC, and is it worth setting up?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"BIMI works on top of DMARC. You must have DMARC enforcement (p=quarantine or p=reject) for BIMI to display your logo in supporting inboxes. You can read about BIMI here in <a href=\\\"https:\\\/\\\/easydmarc.com\\\/blog\\\/how-to-create-bimi-record-step-by-step-guide\\\/\\\" target=\\\"_blank\\\" rel=\\\"noreferrer noopener\\\">this article.<\\\/a>\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457906488\",\"position\":6,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457906488\",\"name\":\"Right now, we're using SendGrid. Is there any other way to improve DMARC?\u00a0\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"Move to DMARC enforcement once all legitimate mail sent through SendGrid (and any other approved services) is consistently passing SPF and especially DKIM with alignment, and you have dedicated DMARC RUA and RUF addresses in place to receive and analyze the reports so you have a complete overview of all sending sources and can properly authenticate and align them before enforcing.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457944921\",\"position\":7,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457944921\",\"name\":\"We\u2019ve been on p=quarantine for 6+ months, and we have a DMARC alignment rate of 96%, so we\u2019re considering moving to p=reject. What will happen to \u201cforwarded\u201d emails when using p=reject?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"Forwarding typically breaks SPF, so as long as the original message keeps a valid, aligned DKIM signature, it will still pass DMARC and be delivered; only forwarded messages without aligned DKIM (and no ARC to vouch for them) are likely to be rejected.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457975803\",\"position\":8,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457975803\",\"name\":\"External verification failed! To receive DMARC Aggregate reports at \\\"***@nctius.com\\\" email, you must publish a \\\"v=DMARC1\\\" TXT record for the \\\"jxncti.com._report._dmarc.nctius.com\\\" subdomain. Ensure proper configuration for DMARC reporting.\u00a0\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"This can be resolved by checking <a href=\\\"https:\\\/\\\/easydmarc.com\\\/blog\\\/fix-external-verification-failure-in-easydmarc\\\/\\\" target=\\\"_blank\\\" rel=\\\"noreferrer noopener\\\">this article<\\\/a>.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457989431\",\"position\":9,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772457989431\",\"name\":\"SPF &amp; DKIM configuration - how much does it impacts DMARC configuration? Any recommendations you can share?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"SPF and DKIM are the foundation of DMARC \u2014 without them properly configured, DMARC cannot pass, and enforcement will break legitimate mail. To better understand this topic, check out <a href=\\\"https:\\\/\\\/easydmarc.com\\\/blog\\\/whats-the-difference-between-spf-dkim-and-dmarc\\\/\\\" target=\\\"_blank\\\" rel=\\\"noreferrer noopener\\\">this article<\\\/a> on SPF, DKIM &amp; DMARC.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458006172\",\"position\":10,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458006172\",\"name\":\"\u00a0If I never send emails from a domain, what\u2019s the best setting?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"If your domain never sends email, the best practice is to set its DMARC policy to p=reject and ensure valid RUA and RUF addresses so you can monitor and receive reports of any spoofing attempts.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458065988\",\"position\":11,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458065988\",\"name\":\"Why do most mail servers do not send failure reports (ruf tag)?\u00a0\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"Most mail servers don\u2019t send DMARC failure (RUF) reports because they contain sensitive information, including the From\\\/To addresses and the full content of the email, which could expose users\u2019 data and compromise message integrity, so major providers generally don\u2019t support them.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458103959\",\"position\":12,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458103959\",\"name\":\"Do I need to review the email sent XML, or just look in my EasyDMARC dashboard?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"As long as your RUA and RUF addresses are included in your DMARC record, you don\u2019t really need to manually review the raw XML reports. EasyDMARC will automatically parse them into a human-readable dashboard that shows all sending sources, pass\\\/fail status, and alignment, so you can monitor everything without opening the XML files.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458119323\",\"position\":13,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458119323\",\"name\":\"Can you comment on SPF All tag qualifiers?\u00a0\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"The SPF all qualifier determines how strict receiving servers should treat mail from IPs not listed in your SPF record. Read more here in <a href=\\\"https:\\\/\\\/easydmarc.com\\\/blog\\\/what-is-an-spf-record\\\/#:~:text=to%20provide%20reasons.-,Qualifiers,-Each%20mechanism%20can\\\" target=\\\"_blank\\\" rel=\\\"noreferrer noopener\\\">this article<\\\/a>.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458161757\",\"position\":14,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458161757\",\"name\":\"Could you elaborate a bit on the difference between SPF Authentication and Alignment, please?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"SPF Pass\\\/Fail results depend on two factors: Authentication and Alignment.<br>Authentication: Confirms that the sending IP or host is authorized to send email for the domain listed in the SPF record. For example, if an email is sent from example.com, SPF checks whether that IP is included in the SPF record for example.com.<br>Alignment: Ensures that the domain in the visible From: header aligns with the domain used for SPF authentication (MAIL FROM \\\/ Return-Path). For instance, if the email\u2019s From: address is info@example.com, the SPF authentication must pass for a domain that matches or is properly aligned with example.com to satisfy DMARC.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458181258\",\"position\":15,\"url\":\"https:\\\/\\\/easydmarc.com\\\/blog\\\/risk-free-dmarc-enforcement-webinar-qa\\\/#faq-question-1772458181258\",\"name\":\"I get domain reports in xml or other formats that I cannot read. Are there human-readable domain reports?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"DMARC reports are XML documents that provide information about the authentication status of DMARC, SPF, and DKIM. <a href=\\\"https:\\\/\\\/uac.easydmarc.com\\\/realms\\\/easydmarc\\\/protocol\\\/openid-connect\\\/auth?client_id=dmarc-app&amp;scope=openid&amp;response_type=code&amp;redirect_uri=https%3A%2F%2Fapp.easydmarc.com%2Flogin%2Fcallback&amp;state=eyJ1c2VySXAiOiIxOTUuMjUwLjcxLjIxMCIsImdvVXJsIjoiIiwibG9naW5PcHRpb25zIjp7fX0%3D&amp;code_challenge=tieFNbnnnlbJUe_z1i56EFBOOOe5OoGFD2Le9IK6Fgw&amp;code_challenge_method=S256\\\" target=\\\"_blank\\\" rel=\\\"noreferrer noopener\\\">Sign up for free<\\\/a> and start reading your DMARC reports with EasyDMARC\u2019s report analyzer.\u00a0\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Risk-Free DMARC Enforcement: Webinar Q&A | EasyDMARC","description":"Get expert answers from our DMARC webinar. Learn how to move from p=none to p=reject, handle forwarding, BIMI, SPF, DKIM, and improve deliverability safely.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/","og_locale":"en_US","og_type":"article","og_title":"Answering Your Webinar Questions: Risk-Free DMARC Enforcement","og_description":"Get expert answers from our DMARC webinar. Learn how to move from p=none to p=reject, handle forwarding, BIMI, SPF, DKIM, and improve deliverability safely.","og_url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/","og_site_name":"EasyDMARC","article_publisher":"https:\/\/www.facebook.com\/EasyDMARC\/","article_published_time":"2026-03-02T13:23:48+00:00","article_modified_time":"2026-03-02T13:46:56+00:00","og_image":[{"width":1440,"height":910,"url":"https:\/\/easydmarc.com\/blog\/wp-content\/uploads\/2026\/03\/Featured-Image-1440x9101-1.png","type":"image\/png"}],"author":"Nshan Manoukian","twitter_card":"summary_large_image","twitter_creator":"@easydmarc","twitter_site":"@easydmarc","twitter_misc":{"Written by":"Nshan Manoukian","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#article","isPartOf":{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/"},"author":{"name":"Nshan Manoukian","@id":"https:\/\/easydmarc.com\/blog\/#\/schema\/person\/3cec4e845c1321726a7cc2f10d4c5e3e"},"headline":"Answering Your Webinar Questions: Risk-Free DMARC Enforcement","datePublished":"2026-03-02T13:23:48+00:00","dateModified":"2026-03-02T13:46:56+00:00","mainEntityOfPage":{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/"},"wordCount":1162,"publisher":{"@id":"https:\/\/easydmarc.com\/blog\/#organization"},"image":{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#primaryimage"},"thumbnailUrl":"https:\/\/easydmarc.com\/blog\/wp-content\/uploads\/2026\/03\/Featured-Image-1440x9101-1.png","articleSection":["Blog","Email Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#respond"]}]},{"@type":["WebPage","FAQPage"],"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/","url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/","name":"Risk-Free DMARC Enforcement: Webinar Q&A | EasyDMARC","isPartOf":{"@id":"https:\/\/easydmarc.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#primaryimage"},"image":{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#primaryimage"},"thumbnailUrl":"https:\/\/easydmarc.com\/blog\/wp-content\/uploads\/2026\/03\/Featured-Image-1440x9101-1.png","datePublished":"2026-03-02T13:23:48+00:00","dateModified":"2026-03-02T13:46:56+00:00","description":"Get expert answers from our DMARC webinar. Learn how to move from p=none to p=reject, handle forwarding, BIMI, SPF, DKIM, and improve deliverability safely.","breadcrumb":{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#breadcrumb"},"mainEntity":[{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457726331"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457751880"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457791733"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457840564"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457873315"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457906488"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457944921"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457975803"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457989431"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458006172"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458065988"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458103959"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458119323"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458161757"},{"@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458181258"}],"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#primaryimage","url":"https:\/\/easydmarc.com\/blog\/wp-content\/uploads\/2026\/03\/Featured-Image-1440x9101-1.png","contentUrl":"https:\/\/easydmarc.com\/blog\/wp-content\/uploads\/2026\/03\/Featured-Image-1440x9101-1.png","width":1440,"height":910},{"@type":"BreadcrumbList","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/easydmarc.com\/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https:\/\/easydmarc.com\/blog\/category\/blog\/"},{"@type":"ListItem","position":3,"name":"Email Security","item":"https:\/\/easydmarc.com\/blog\/category\/blog\/email-security\/"},{"@type":"ListItem","position":4,"name":"Answering Your Webinar Questions: Risk-Free DMARC Enforcement"}]},{"@type":"WebSite","@id":"https:\/\/easydmarc.com\/blog\/#website","url":"https:\/\/easydmarc.com\/blog\/","name":"EasyDMARC","description":"Blog","publisher":{"@id":"https:\/\/easydmarc.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/easydmarc.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/easydmarc.com\/#organization","name":"EasyDMARC","url":"https:\/\/easydmarc.com\/","logo":{"@type":"ImageObject","url":"https:\/\/easydmarc.com\/img\/logo.png"},"image":{"@id":"https:\/\/easydmarc.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/EasyDMARC\/","https:\/\/x.com\/easydmarc","https:\/\/www.linkedin.com\/company\/easydmarc\/mycompany\/"]},{"@type":"Person","@id":"https:\/\/easydmarc.com\/blog\/#\/schema\/person\/3cec4e845c1321726a7cc2f10d4c5e3e","name":"Nshan Manoukian","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/b48a8730c40c3d047a7ce369ac08784b0ebfedd540b86da9801538e8855f5763?s=96&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/b48a8730c40c3d047a7ce369ac08784b0ebfedd540b86da9801538e8855f5763?s=96&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b48a8730c40c3d047a7ce369ac08784b0ebfedd540b86da9801538e8855f5763?s=96&r=g","caption":"Nshan Manoukian"},"url":"https:\/\/easydmarc.com\/blog\/author\/nshan\/"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457726331","position":1,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457726331","name":"Will DMARC help with the deliverability of email forwarders? I have around 130 email forwarders that do not always get delivered to our email accounts. It happens most commonly with Gmail, but can happen with other email providers, too.","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"It can help, but DMARC alone doesn\u2019t fix forwarding because SPF breaks and DKIM often gets modified. The reliable solution is to preserve DKIM and\/or enable ARC on the forwarding servers. That\u2019s what improves Gmail delivery the most.<br>In forwarding scenarios, DKIM is more reliable than SPF, because SPF will always fail once the message is resent by another server. As long as DKIM is configured correctly and passes both authentication and alignment, DMARC can still pass, and the emails can be delivered successfully.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457751880","position":2,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457751880","name":"What is the advice on DMARC policies for small businesses that have clients with email general domains like gmail.com, outlook.com, or hotmail.com?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"You can\u2019t publish or enforce DMARC for those domains; only the domain owner can. So your DMARC policy applies only to your own business domain.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457791733","position":3,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457791733","name":"How does this work for emails set up on a web host? For example, my company uses Bluehost for the website, and our emails are set up through them, too. How does dmarc enforcement work in this case?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"DMARC is set in your domain\u2019s DNS, so it works the same even if your email is hosted with Bluehost. As long as Bluehost is included in your SPF and DKIM is enabled for your domain, your legitimate emails will pass DMARC.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457840564","position":4,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457840564","name":"How do we know when to move from p=none to p=quarantine and when to move to p=reject? What metrics do I need to monitor?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"Move to DMARC enforcement when your reports show that all legitimate sending sources are passing authentication \u2014 ideally with DKIM alignment (and SPF where possible) \u2014 and any remaining failures are only from unauthorized sources.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457873315","position":5,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457873315","name":"How is BIMI related to DMARC, and is it worth setting up?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"BIMI works on top of DMARC. You must have DMARC enforcement (p=quarantine or p=reject) for BIMI to display your logo in supporting inboxes. You can read about BIMI here in <a href=\"https:\/\/easydmarc.com\/blog\/how-to-create-bimi-record-step-by-step-guide\/\" target=\"_blank\" rel=\"noreferrer noopener\">this article.<\/a>","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457906488","position":6,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457906488","name":"Right now, we're using SendGrid. Is there any other way to improve DMARC?\u00a0","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"Move to DMARC enforcement once all legitimate mail sent through SendGrid (and any other approved services) is consistently passing SPF and especially DKIM with alignment, and you have dedicated DMARC RUA and RUF addresses in place to receive and analyze the reports so you have a complete overview of all sending sources and can properly authenticate and align them before enforcing.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457944921","position":7,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457944921","name":"We\u2019ve been on p=quarantine for 6+ months, and we have a DMARC alignment rate of 96%, so we\u2019re considering moving to p=reject. What will happen to \u201cforwarded\u201d emails when using p=reject?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"Forwarding typically breaks SPF, so as long as the original message keeps a valid, aligned DKIM signature, it will still pass DMARC and be delivered; only forwarded messages without aligned DKIM (and no ARC to vouch for them) are likely to be rejected.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457975803","position":8,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457975803","name":"External verification failed! To receive DMARC Aggregate reports at \"***@nctius.com\" email, you must publish a \"v=DMARC1\" TXT record for the \"jxncti.com._report._dmarc.nctius.com\" subdomain. Ensure proper configuration for DMARC reporting.\u00a0","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"This can be resolved by checking <a href=\"https:\/\/easydmarc.com\/blog\/fix-external-verification-failure-in-easydmarc\/\" target=\"_blank\" rel=\"noreferrer noopener\">this article<\/a>.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457989431","position":9,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772457989431","name":"SPF &amp; DKIM configuration - how much does it impacts DMARC configuration? Any recommendations you can share?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"SPF and DKIM are the foundation of DMARC \u2014 without them properly configured, DMARC cannot pass, and enforcement will break legitimate mail. To better understand this topic, check out <a href=\"https:\/\/easydmarc.com\/blog\/whats-the-difference-between-spf-dkim-and-dmarc\/\" target=\"_blank\" rel=\"noreferrer noopener\">this article<\/a> on SPF, DKIM &amp; DMARC.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458006172","position":10,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458006172","name":"\u00a0If I never send emails from a domain, what\u2019s the best setting?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"If your domain never sends email, the best practice is to set its DMARC policy to p=reject and ensure valid RUA and RUF addresses so you can monitor and receive reports of any spoofing attempts.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458065988","position":11,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458065988","name":"Why do most mail servers do not send failure reports (ruf tag)?\u00a0","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"Most mail servers don\u2019t send DMARC failure (RUF) reports because they contain sensitive information, including the From\/To addresses and the full content of the email, which could expose users\u2019 data and compromise message integrity, so major providers generally don\u2019t support them.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458103959","position":12,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458103959","name":"Do I need to review the email sent XML, or just look in my EasyDMARC dashboard?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"As long as your RUA and RUF addresses are included in your DMARC record, you don\u2019t really need to manually review the raw XML reports. EasyDMARC will automatically parse them into a human-readable dashboard that shows all sending sources, pass\/fail status, and alignment, so you can monitor everything without opening the XML files.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458119323","position":13,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458119323","name":"Can you comment on SPF All tag qualifiers?\u00a0","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"The SPF all qualifier determines how strict receiving servers should treat mail from IPs not listed in your SPF record. Read more here in <a href=\"https:\/\/easydmarc.com\/blog\/what-is-an-spf-record\/#:~:text=to%20provide%20reasons.-,Qualifiers,-Each%20mechanism%20can\" target=\"_blank\" rel=\"noreferrer noopener\">this article<\/a>.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458161757","position":14,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458161757","name":"Could you elaborate a bit on the difference between SPF Authentication and Alignment, please?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"SPF Pass\/Fail results depend on two factors: Authentication and Alignment.<br>Authentication: Confirms that the sending IP or host is authorized to send email for the domain listed in the SPF record. For example, if an email is sent from example.com, SPF checks whether that IP is included in the SPF record for example.com.<br>Alignment: Ensures that the domain in the visible From: header aligns with the domain used for SPF authentication (MAIL FROM \/ Return-Path). For instance, if the email\u2019s From: address is info@example.com, the SPF authentication must pass for a domain that matches or is properly aligned with example.com to satisfy DMARC.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458181258","position":15,"url":"https:\/\/easydmarc.com\/blog\/risk-free-dmarc-enforcement-webinar-qa\/#faq-question-1772458181258","name":"I get domain reports in xml or other formats that I cannot read. Are there human-readable domain reports?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"DMARC reports are XML documents that provide information about the authentication status of DMARC, SPF, and DKIM. <a href=\"https:\/\/uac.easydmarc.com\/realms\/easydmarc\/protocol\/openid-connect\/auth?client_id=dmarc-app&amp;scope=openid&amp;response_type=code&amp;redirect_uri=https%3A%2F%2Fapp.easydmarc.com%2Flogin%2Fcallback&amp;state=eyJ1c2VySXAiOiIxOTUuMjUwLjcxLjIxMCIsImdvVXJsIjoiIiwibG9naW5PcHRpb25zIjp7fX0%3D&amp;code_challenge=tieFNbnnnlbJUe_z1i56EFBOOOe5OoGFD2Le9IK6Fgw&amp;code_challenge_method=S256\" target=\"_blank\" rel=\"noreferrer noopener\">Sign up for free<\/a> and start reading your DMARC reports with EasyDMARC\u2019s report analyzer.\u00a0","inLanguage":"en-US"},"inLanguage":"en-US"}]}},"jetpack_featured_media_url":"https:\/\/easydmarc.com\/blog\/wp-content\/uploads\/2026\/03\/Featured-Image-1440x9101-1.png","_links":{"self":[{"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/posts\/59272","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/users\/57"}],"replies":[{"embeddable":true,"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/comments?post=59272"}],"version-history":[{"count":5,"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/posts\/59272\/revisions"}],"predecessor-version":[{"id":59281,"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/posts\/59272\/revisions\/59281"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/media\/59273"}],"wp:attachment":[{"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/media?parent=59272"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/categories?post=59272"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/easydmarc.com\/blog\/wp-json\/wp\/v2\/tags?post=59272"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}