Skip to content
  • There are no suggestions because the search field is empty.

What do the 3 CNAME records of Managed MTA-STS stand for?

When setting up Managed MTA-STS with EasyDMARC, you’ll be asked to add three CNAME records.

google-1752075781341


Each one serves a specific purpose:

1. MTA-STS Policy Hosting

Record name: mta-sts
Type: CNAME

Value: yourdomain_com_mta_sts.easydmarc.pro

Resolves to: mta.easydmarc.com

Purpose:

This is where your MTA-STS policy file is hosted. It tells other mail servers how to securely deliver emails to your domain.


2. Policy ID Record

Record name: _mta-sts
Type: CNAME

Value: yourdomain_com__mta_sts.easydmarc.pro

Resolves to a TXT-type record v=STSv1; id=...

Purpose:

This record shows the version (or ID) of your policy. It updates when changes are made to the policy.


3. TLS Reporting Record

Record name: _smtp._tls
Type: CNAME

Value: yourdomain_com__smtp_tls.easydmarc.pro

Resolves to a TXT-type record v=TLSRPTv1; rua=...

Purpose:

This enables TLS reporting. It tells other servers where to send reports if there are issues with encrypted email delivery to your domain.


You can refer to this article to set up EasyDMARC’s Managed MTA-STS and TLS-RPT solution from scratch.



In case you have any further questions, feel free to reach out to EasyDMARC technical support.