figma.com has good email authentication with minor issues. Most records are correctly configured.
| SPF (Sender Policy Framework) | pass |
| DKIM (DomainKeys Identified Mail) | pass |
| DMARC (Domain-based Message Authentication) | warn |
| MX (Mail Exchange Records) | pass |
| Blacklist Status | pass |
v=spf1 a include:_spf.google.com ip4:149.72.216.165 ip4:167.89.79.69 ip4:167.89.87.53 ip4:168.245.25.177 ip4:167.89.97.206 include:mail.zendesk.com include:mg-spf.greenhouse.io -all
v=DMARC1; p=quarantine;
Email authentication (SPF, DKIM, DMARC) verifies that emails claiming to be from figma.com actually come from authorized servers. Without proper authentication, emails may be marked as spam or rejected by receiving servers like Gmail, Outlook, and Yahoo.
Since February 2024, Google and Yahoo require SPF, DKIM, and DMARC for all email senders. Domains without these records see significantly higher spam rates.
Use our step-by-step setup guides to configure the missing records at your DNS provider. After making changes, re-scan figma.com to verify the fix.