The business team want to know what kind of report Marketo offers to validate which email domains are being used in Marketo. As in existing Marketo instance there are multiple SPF email domains (10+) that are verified but not sure which SPF domain is being used for sending email and tracking links.
In the existing account there are 4 branding domain(CNAME) that are set up successfully. Each has a different domain. And there are 11 SPF records added which are verified out of those SPF records 2 SPF record are not matching with branding domain but are verified too.
Solved! Go to Solution.
I’m explaining that whether email domains are SPF verified or not doesn’t matter in any way.
There’s actually no way to 100% know which email domains shown in Admin are used in the From: header of approved email assets. You might use Velocity tokens to populate the From: address, making it completely dynamic at send time.
If you don’t use Velocity tokens, you can use the REST API to crawl all Email assets and if, applicable, the Text {{my.tokens}} at each level of the Marketing Activities tree. But this is a very substantial technical undertaking. What is the full purpose of this exercise?
Unfortunately there’s no such report.
You could use the Marketo REST API to get a few months of Send Email activity logs, then dedupe on the Email Asset ID and look up those assets in Marketo. Again being aware that tokens used in the From: complicate the task.
To get our terms in alignment: in Marketo, “branding domain” means a click tracking domain. This is the domain used in rewritten email links. It registers a Clicked Link in Email activity before redirecting to the original destination URL. The branding domain has nothing to do with SPF in any way. It will never be validated using SPF.
The “email domains” are domains known to be used in the From: header. You must verify these domains with DKIM (i.e. set up the corresponding DKIM TXT record) in order for messages to be signed by Marketo. Signed messages are key to passing a strict DMARC policy. But while they do relate directly with DKIM, these email domains also have nothing to do with SPF. They too will never be validated using SPF.
The only Marketo domains that relate to SPF are SMTP envelope sender domains. These are the domains used in the MAIL FROM: (which is not the same as the From: header). Your envelope sender will be something.mktomail.com (by default) or, if and only if you’ve purchased and set up the branded envelope sender add-in, a subdomain of your corporate domain like bounces.example.com. This is the only domain that’s actually validated using SPF: it’s the domain whose SPF record must include:mktomail.com. If you’re using the default something.mktomail.com as envelope sender, Marketo manages the DNS for that domain, so there’s nothing for you to configure.
Thanks for sharing details for verification SPF and how it works. But the ask is Reporting i.e. how many email domain are in used condition out of 10 SPF verified email domains. How to get this report?
I’m explaining that whether email domains are SPF verified or not doesn’t matter in any way.
There’s actually no way to 100% know which email domains shown in Admin are used in the From: header of approved email assets. You might use Velocity tokens to populate the From: address, making it completely dynamic at send time.
If you don’t use Velocity tokens, you can use the REST API to crawl all Email assets and if, applicable, the Text {{my.tokens}} at each level of the Marketing Activities tree. But this is a very substantial technical undertaking. What is the full purpose of this exercise?
The goal is to clean-up unused email domains. So whatever is in use will keep that one in Marketo and this also saves time to monitor the spam rate in Google Postmaster. Do not have to look at all email domains regular basic for monitoring purposes which are not being used anymore.
Unfortunately there’s no such report.
You could use the Marketo REST API to get a few months of Send Email activity logs, then dedupe on the Email Asset ID and look up those assets in Marketo. Again being aware that tokens used in the From: complicate the task.
Are you looking to just see which domains are DKIM and SPF validated? Do you have access to the Admin tab in Marketo? You can go there, select Email then SPF/DKIM. You should see a list of all domains that have had keys generated. Clicking on the one of them and hitting Check DNS will let you know if that domain is verified or not.
Are you looking to just see which domains are DKIM and SPF validated? Do you have access to the Admin tab in Marketo?
OP is already using Admin » Email. The goal is to figure out which of the email domains is being used for Marketo sends. This isn’t possible in Admin.