Klaviyo is a robust, all-in-one email marketing solution that helps you send emails. When you set up SPF for Klaviyo, you’re telling the world you’re the real deal—and giving yourself a way to protect your domain reputation in the event of a phishing attack. It’s important to make sure that email receiving MTAs know that your emails are coming from a legitimate source and thereby improve email deliverability over time.
Process for Setting Up SPF and DKIM and DMARC authentication for Klaviyo
Setting up your dedicated sending domain on Klaviyo
To implement a DMARC policy for your Klaviyo emails, you need to have a dedicated sending domain on Klaviyo.
Login to your Klaviyo account
Navigate to Settings and click on Domains and Hosting
Click on Get Started
Enter your domain name and subdomain and select the option to continue
Klaviyo will generate DNS records which you will have to publish in your DNS to enable email authentication for your domain
Login to your DNS management console, and navigate to the DNS records section for adding new records
Copy the 3 CNAME records and publish them on your DNS
Next copy the last TXT record and publish it on your DNS as well
Once done wait for 24-48 hours for your DNS to process the changes, then open your Klaviyo account again
Click on Verify Records button to verify your newly configured SPF and DKIM authentication for Klaviyo
If the records are valid and correctly set up for your domain, a dialogue box appears confirming that your records have been verified. Close the box.
This redirects you to the Domains and Hosting page, wherein now you will notice an Apply Domain button. Click on it.
A dialogue box appears asking for confirmation. Check the box as shown below and click on Apply Domain.
Note: Make sure you look up and validate your SPF and DKIM records with our email authentication lookup tools. This will make sure that your records are valid and correctly configured and highlight errors, if there.
Creating a DMARC record for Klaviyo
Note that DMARC is NOT a protocol that you can set up with Klaviyo. You can however enable DMARC for your emails on Klaviyo by creating a TXT record for your domain using our free DMARC record generator tool.
Shown below is an example of a generated TXT record for DMARC:
Create a record with the following specifications:
Type: TXT
Host: _dmarc
Value: your generated DMARC record value
Please publish this DNS TXT record on the subdomain _dmarc.YOURDOMAIN.com where YOURDOMAIN.com is your domain name.
With this, your emails sent from your domain using Klaviyo as your ESP will now be aligned against SPF and DKIM and will pass the DMARC authentication check, successfully. You can additionally implement DMARC reporting for your domain with our DMARC report analyzer to stay updated on deliverability issues and authentication results.