Getting your senders to authenticate their email correctly can sometimes be a bit complicated. For those situations, we've included reports to let you focus on specific authentication outcomes from recent DMARC report data.


To see reporting for a specific sender, navigate into a sender detail page from the dashboard by clicking on a sender tile.


Scroll down the page to see reports.


Where's this Data Coming From?

Data comes from daily DMARC reports, sent by mailbox providers like Gmail, Yahoo, or Zoho. They send data about how many emails from what IP address signed with which DKIM keys and whether they passed or failed DMARC. These reports come in every 24 hours, so it can take a few days to get a full picture of what email you are sending out across all services.


Chart 1: DMARC Pass/Fail


This chart shows how many of the emails in this time period passed or failed DMARC. The chart shows you the trend over different days, and here you can see how configuration changes you make impact your authentication outcomes.


Read more about DMARC


The table below shows specific ways that email passed or failed DMARC.

  • Passing DMARC: how many emails in this time period passed?
  • with DKIM: how many emails passed DMARC because they passed DKIM with alignment?
  • with SPF: how many emails passed DMARC because they passed SPF with alignemnt?
  • with DMARC override: how many emails passed DMARC because of a local override at the mailbox provider? An override is a decision by the receiver to ignore the DMARC policy. A good example is Gmail overriding a failed DMARC alignment in order to accept a forwarded group email that it’s certain is actually non-malicious.
  • Failing DMARC: how many emails in this time period failed DMARC?
  • SPF Unaligned: how many of those that failed specifically had a problem with SPF alignment?
  • SPF Aligned, Failing: how many of those that failed specifically had a problem with SPF that was not related to alignment?
  • SPF Strict Failure Mode: how many of those that failed specifically had a problem because the domain's DMARC policy includes strict mode for SPF?
  • DKIM Unaligned: how many of those that failed were missing any aligned DKIM signatures?
  • DKIM Aligned, Failing: how many of those that failed specifically had an aligned DKIM signature that failed authentication? This means the key was not found or did not match the signature.
  • DKIM Strict Mode Failure: how many of those that failed specificallyhad a problem because the domain's DMARC policy includes strict mode for DKIM?


Chart 2: Aligned SPF


This chart is all about SPF. It shows how many emails within the time period passed SPF with alignment, failed SPF (though aligned), were unaligned for SPF, or had a strict mode failure.


Read more about SPF.


The table below shows a sample of DMARC reporting data with detailed information about SPF results. Specifically, you can see

  • The date that a number of emails were received by a mailbox provider
  • The count of emails they received for which the other facts here are true. (DMARC reports group together emails that have the exact same authentication outcomes.)
  • The IP address that sent the emails
  • The explicit From domain on the emails
  • The Return Path on the emails
  • The SPF domain of the emails
  • The SPF result


Chart 3: Aligned DKIM


This chart is all about DKIM. It shows how many emails within the time period passed DKIM with alignment, failed with aligned signatures, had no aligned signatures at all, or failed because of strict mode.


Read more about DKIM.


The table below shows a sample of DMARC reporting data with detailed information about DKIM results. Specifically, you can see

  • The date that a number of emails were received by a mailbox provider
  • The count of emails they received for which the other facts here are true. (DMARC reports group together emails that have the exact same authentication outcomes.)
  • The IP address that sent the emails
  • The header From domain on the emails
  • The DKIM result for as many selectors as the mailbox provider chooses to report on. (Some of them describe every key; some describe one or none!)


Chart 4: Disposition


This chart shows what happens to email after it's evaluated for DMARC. An email can be delivered, quarantined or rejected. This is called "disposition" in the DMARC nomenclature. Specifically, this chart breaks down 

  • how many emails were delivered "with no enforcement" (because the domain's DMARC policy has no enforcement of its policy, failed authentication doesn't actually prevent email delivery)
  • how many emails were delivered "with enforcement" (delivered, given that the domain does have a DMARC policy with an enforcement policy of quarantine or reject)
  • how many emails were delivered due to a policy override (a local policy with the mailbox provider)
  • how many emails were quarantined
  • how many emails were rejected


The table below shows the same information as portion of the whole.