DMARC Enforcement and BU Email
Boston University now enforces DMARC (Domain-based Message Authentication, Reporting, and Conformance) for email sent from @bu.edu addresses.
This means that BU email must be sent through systems that are properly authenticated and DMARC‑aligned (for example, BU‑managed Office 365, BU Google Mail or other BU‑approved sending platforms). Messages sent from non‑authorized or misconfigured systems may be rejected or dropped by recipient mail providers.
Proper DMARC alignment requires adding the sending source to SPF records in DNS as well as configuring DKIM signing. For more information check out Sending from a Third Party.
Why This Matters
DMARC enforcement helps protect the BU community by:
- Preventing spoofing and phishing attempts using @bu.edu addresses
- Improving the overall trust and deliverability of legitimate BU email
- Aligning BU email practices with current requirements from major email providers
Because of this enforcement, forwarded or relayed email that is not properly authenticated may fail delivery, even if it previously worked.
What You Should Do
- Send BU email only from BU‑approved, DMARC‑signed systems
- Office 365 Outlook (web, desktop, or mobile)
- Other BU‑managed or BU‑approved email platforms
- Avoid sending BU email from personal mail systems, scripts, or third‑party services unless they are explicitly configured to send on behalf of BU
If you manage an application or service that sends email using a @bu.edu address, it must be properly configured to meet BU’s email authentication requirements.