How to check your SPF, DKIM and DMARC records (step by step)

Short answer: before any cold sending, confirm SPF, DKIM and DMARC all pass for your domain. Check SPF + DMARC with a DNS/MX lookup tool (they're public TXT records), check DKIM by sending a test email to a checker and inspecting the signature result, and confirm DMARC alignment (the From domain matches the authenticated domain). All three passing is the entry ticket to the inbox — Gmail/Yahoo effectively require it from bulk senders.

How to check each

• SPF: look up the domain's TXT record (v=spf1 …); confirm your sending service is authorised and there's one SPF record.
• DKIM: send a test to a checker; confirm the message is DKIM-signed and verifies (look up the selector's TXT record).
• DMARC: look up _dmarc.yourdomain.com; confirm a policy exists (v=DMARC1; p=…) and that SPF/DKIM align to your From domain.

Common failures

Multiple SPF records (only one allowed), missing DKIM selector, or a From domain that doesn't align with the authenticated one (breaks DMARC).

Autocloz checks SPF, DKIM and DMARC on every connected domain and flags anything missing before you send a single email.

> Start free — connect a domain and get an instant auth health check.