MailerMonk
    01Free tools
    02Backlink agent03How it works04Pricing
    Sign inStart free trial
    PrivacyTerms
    Chapter · DMARC for Zoho Mail
    Revised 17 Jun 2026
    Guide · DMARC · Zoho Mail

    How to set up DMARC for Zoho Mail.

    Zoho Mail is a budget-friendly business mail platform. The DKIM step is unusual — you generate the selector inside the Zoho admin console rather than using a fixed name.

    Afsan Rahmatullah
    Afsan RahmatullahMailerMonk

    DMARC (RFC 7489) tells receiving mail servers what to do when a message claiming to be from your domain fails SPF or DKIM. You publish exactly one DMARC record at `_dmarc.<your-domain>`, regardless of which ESP you use — DMARC is a domain-level policy, not a per-sender configuration. Zoho Mail doesn't run DMARC for you, but their SPF + DKIM setup is what makes your DMARC checks pass.

    Start every domain at `p=none` with a `rua` (aggregate report) address pointing somewhere you actually read. Watch the reports for two to four weeks to confirm 100% of legitimate mail is aligned, then progress to `p=quarantine` and finally `p=reject`. Skipping the monitoring step is the single most common way founders accidentally block their own mail.

    Publish these DNS records

    Add the following record(s) to your domain's DNS zone. Most registrars (Cloudflare, Route 53, Namecheap, GoDaddy) accept values exactly as shown.

    Record · TXT
    Type
    TXT
    Host
    _dmarc
    Value
    v=DMARC1; p=none; rua=mailto:dmarc-reports@your-domain.com

    Where in Zoho Mail

    The DMARC configuration lives in Zoho Mail Admin → Domains → <your-domain> → Email Configuration → DKIM.

    Verify the records

    Once published, run the DMARC Checker on your apex domain to confirm the record parses, reporting URIs are valid, and the policy is what you intended.

    From a terminal
    dig +short TXT _dmarc.your-domain.com
    Run the free DMARC checker

    Common pitfalls

    Pitfall
    • Zoho's DKIM verification step takes 30–60 minutes to recognize a freshly published TXT record even when DNS has propagated globally. Hitting the Verify button repeatedly does not help — wait it out and try again after an hour.
    • If you migrate from Google Workspace to Zoho, remove Google's `_domainkey` records during cutover or you'll have multiple DKIM selectors active and may get flagged as spoofing.
    • EU and US Zoho accounts use different DNS hosts. `include:zoho.com` is for global/US; EU customers must use `include:zohomail.eu`. The DKIM record is generated regardless, but the SPF mismatch will fail alignment for some receivers (especially Outlook.com and Yahoo EU).
    • The Zoho admin console occasionally shows the TXT value truncated in the UI. Always copy from the `Copy` button rather than selecting text manually — manual selection often misses the trailing characters of the public key.
    After you publish

    Want to know if it actually keeps working?

    MailerMonk continuously watches your DMARC record, aggregate DMARC reports, and inbox placement — and pings you the moment something drifts. Free for the first domain.

    Start free trial

    About the author

    Afsan Rahmatullah
    Afsan Rahmatullah
    MailerMonk

    Building tools that keep cold email out of spam. Writes about deliverability, DMARC, and what actually moves inbox placement.

    Related · Zoho Mail

    Other records for Zoho Mail