What do the 3 CNAME records of Managed MTA-STS stand for?
When setting up Managed MTA-STS with EasyDMARC, you’ll be asked to add three CNAME records.
Each one serves a specific purpose:
1. MTA-STS Policy HostingRecord name: mta-sts
Type: CNAME
Value: yourdomain_com_mta_sts.easydmarc.pro
Resolves to: mta.easydmarc.com
Purpose:
This is where your MTA-STS policy file is hosted. It tells other mail servers how to securely deliver emails to your domain.
2. Policy ID Record
Record name: _mta-sts
Type: CNAME
Value: yourdomain_com__mta_sts.easydmarc.pro
Resolves to a TXT-type record v=STSv1; id=...
Purpose:
This record shows the version (or ID) of your policy. It updates when changes are made to the policy.
3. TLS Reporting Record
Record name: _smtp._tls
Type: CNAME
Value: yourdomain_com__smtp_tls.easydmarc.pro
Resolves to a TXT-type record v=TLSRPTv1; rua=...
Purpose:
This enables TLS reporting. It tells other servers where to send reports if there are issues with encrypted email delivery to your domain.
You can refer to this article to set up EasyDMARC’s Managed MTA-STS and TLS-RPT solution from scratch.
In case you have any further questions, feel free to reach out to EasyDMARC technical support.