How to Configure SPF, DKIM and DMARC in cPanel Print

  • email, spf, dkim, dmarc, cpanel
  • 0

SPF, DKIM, and DMARC help receiving servers verify that mail from your domain is legitimate. Configure them in cPanel Email Deliverability using the records generated for your own domain.

Open Email Deliverability

  1. Log in to cPanel.
  2. Open Email Deliverability.
  3. Select your domain.

What each record does

  • SPF: lists which servers may send mail for your domain.
  • DKIM: adds a cryptographic signature to messages.
  • DMARC: tells providers how to handle mail that fails SPF or DKIM checks.

Apply suggested records in authoritative DNS

  1. Review the suggested TXT records in Email Deliverability.
  2. If DNS is managed in cPanel Zone Editor, add or repair records there — add A, CNAME, and TXT records.
  3. If DNS is at Cloudflare or another provider, copy the same names and values to that DNS panel.

Cloudflare and third-party DNS

  • Add TXT records exactly as shown — do not proxy TXT records.
  • Keep MX records pointing to your live mail host when changing other DNS.

Avoid multiple SPF records

Publish only one SPF TXT record per domain. Merge includes instead of creating duplicates.

Start DMARC safely

  1. Ensure SPF and DKIM show as valid in Email Deliverability.
  2. Begin DMARC with p=none to monitor reports before enforcement.
  3. Increase policy only after legitimate mail passes consistently.

Basic troubleshooting

  • Wait for DNS propagation (up to 24–48 hours in some cases).
  • Remove obsolete SPF entries from old hosts.
  • Re-test from Track Delivery after changes.

If authentication stays invalid after 48 hours, open a ticket with your domain and whether DNS is at Pakish nameservers or Cloudflare. Messages still hitting spam may need content review — spam folder help.


Was this answer helpful?

« Back

Powered by WHMCompleteSolution