Set up mail security for G Suite

Tip: To add an SPF TXT record at domain providers other than Google Domains, visit Protect your domain with SPF records.

Google Domains can automatically configure SPF Validation and DKIM signing for G Suite email accounts on your domain.

  1. In Google Domains, go to the the DNS tab for your domain.
  2. Scroll down to Synthetic Records.
  3. Locate the G Suite synthetic record and click Edit to the right of the entry.
  4. Leave Email checked. Unchecking email will disable G Suite email for your domain.
  5. Click the triangle next to "Email" to select which email features to include:
    • MX Records - creates the Mail Exchange (MX) resource records in Google Domains to direct your domain's mail flow to your G Suite account. Leave this checked if you are going to use G Suite email. For more help see MX records.
    • SPF Validation - creates a Sender Policy Framework (SPF) record for your domain. An SPF record is a type of Domain Name Service (DNS) record that identifies which mail servers are permitted to send email on behalf of your domain. The purpose of an SPF record is to prevent spammers from sending messages with forged From addresses at your domain. Learn more about SPF records.
    • DKIM Signing - creates the TXT records necessary to allow G Suite to attach a digital signature to outgoing emails to prevent spoofing of the From address. If you select DKIM Signing, you will need to configure DKIM in G Suite. For more help see Add digital signatures with DKIM in the G Suite help center. 
  6. Click Save.

For more help with custom URLs, see the G Suite Help Center.

Was this helpful?
How can we improve it?

Need more help?

Sign in for additional support options to quickly solve your issue