All Collections
SPF, DMARC and DKIM: Google Domain & Google Workspace
SPF, DMARC and DKIM: Google Domain & Google Workspace

How to set up records and connect your Google domain to your Google workspace

Updated over a week ago

If you use Google Workspace for your email accounts and Google Domains as your domain host, you will need to set up some DNS records prior to starting to use your email accounts for sending.

How to connect your Google domain to Google Workspace?

You can connect your Google domain to your Google Workspace in a few simple steps, by giving permissions to Google Workspace to automatically generate DNS records for your domain.

Please follow the steps below:

  • Log in to your Google Admin and Google Domain.

  • Go to your Manage Domains page by clicking on Account, Domains, and Manage domains

  • Click on Add a domain button

  • Enter the domain name, select Secondary domain type and click on Verify domain

  • On the next page, you will be asked to sign in to verify the domain. Sign in to the account that you used to buy the domain from Google

  • If the account that you used to buy the domain is different from the workspace admin account, you will need to sign in with its credentials to verify the ownership of the domain

  • You will be asked to permit the workspace admin to manage the domain

  • Click Add

  • Click on Go to Google Workspace

  • After you verify your ownership and go back to Google Workspace, your domain will be verified

  • The next step is to activate Gmail. Click on Activate Gmail

  • Select Set up MX Record and click NEXT

  • You will be asked to sign in to your Google Domain. After you sign in and authorize, Google will automatically update your domain settings to start routing your emails to Gmail.

  • Sign in with the account that you used to buy the Google domain

  • Records that will be automatically added to your domain DNS are MX, SPF, TXT and DKIM. Click on Yes, connect.

  • You can now go to your Google domains, and check the DNS records of the domain that you connected to Google Workspace. Click on Google Workspace to see all the records created

Note: Google will automatically add MX, SPF, and DKIM records for your domain, thus you only need to manually add the DMARC record after that.

How to set up DMARC on your Google domain?

To add DMARC to your Google admin, please follow these steps:

  1. On the DNS page for your domain, click on the arrow of the Custom Records

  2. On the DNS page of your domain, click on the arrow of Custom Records.

  3. Enter the following details.

    Host Name:





    v=DMARC1;p=none;sp=none;pct=100;rua=mailto:[email protected];ri=86400;aspf=s;adkim=s;fo=1

  4. Set the TTL for this record to the lowest possible (1h is perfectly fine).

Note: For rua and ruf tags in the Value field, please replace [email protected] with your email address.

You can also use third-party websites to help you generate your DMARC.


Q: Do I need to add DKIM, SPF, and DMARC to my Google domain?

A: Google Workspace records are generated automatically when you connect a domain with your Google Workspace email account via Google Domains. The records that will be generated automatically are MX, SPF, TXT, and DKIM and you should add DMARC record.

If you are to modify any record alone, you may need to delete the whole Google Workspace records and have them re-entered on your Custom Records.

Learn more:

Did this answer your question?