Summary
Validating BIMI records involves a multi-faceted approach encompassing DNS configuration, SVG logo validation, and email authentication protocols. The BIMI record, a TXT record located in the domain's DNS zone at `default._bimi.client.com`, specifies the logo's location. The SVG logo must be a square vector graphic without text, served over HTTPS. Common errors include using raster images saved as SVGs and incorrect sizing. VMCs, digital certificates authenticating logos, are optional but often required by Gmail; ensure the issuing CA is trusted. Use online validators to check DNS settings, syntax, and HTTPS status. Implementing BIMI effectively requires SPF, DKIM, and DMARC setup with a DMARC policy of `p=quarantine` or `p=reject`. Remember to test across different email clients, and ensure all URLs are accessible over HTTPS.
Key findings
- Record Location: BIMI record resides in DNS zone at `default._bimi.client.com`.
- SVG Requirements: SVG logos must be square, vector-based, text-free, and served over HTTPS.
- VMC Necessity: VMCs are needed for some providers (e.g., Gmail).
- Validator Importance: Online validators assess DNS settings, syntax, and HTTPS status.
- Authentication Prerequisites: SPF, DKIM, and DMARC (with `p=quarantine` or `p=reject`) are essential.
Key considerations
- Logo Validation: Verify SVG logos are true vector graphics, properly sized, and accessible.
- HTTPS Enforcement: Ensure logos and VMCs are served over HTTPS with valid SSL certificates.
- Cross-Client Testing: Test BIMI implementation across various email clients.
- Root Domain Check: Ensure BIMI record is configured for the root domain.
- Online tools: Use online validation tools to test and identify problems.
What email marketers say
10 marketer opinions
Validating BIMI records and fixing common errors involves several steps. First, ensure the SVG logo is a true vector image, not just a raster image saved as an SVG. Use SVG validator tools to confirm it meets BIMI specifications, including square dimensions and correct XML structure. For the BIMI record itself, utilize online checkers to validate syntax and DNS entries. Common errors include incorrect DNS configuration and malformed URLs. VMCs are not always needed but may be required by providers like Gmail; verify the issuing CA is trusted. Ensure SPF, DKIM, and DMARC are properly set up before implementing BIMI, with DMARC set to 'quarantine' or 'reject'. BIMI enhances brand visibility and improves email security.
Key opinions
- SVG Validation: SVG logos must be true vector images and meet BIMI specifications, validated using online tools.
- BIMI Record Checkers: Online BIMI record checkers are essential for validating syntax, DNS entries, and overall record presence.
- VMC Requirements: Verified Mark Certificates (VMCs) are required by some email providers, like Gmail, and the CA must be trusted.
- Email Authentication: SPF, DKIM, and DMARC are prerequisites for BIMI implementation, with DMARC set to 'quarantine' or 'reject'.
Key considerations
- Logo Format: Ensure the SVG logo is a true vector image, not just a raster image saved as an SVG format.
- DNS Configuration: Verify correct DNS configuration for the BIMI record, including proper syntax and placement under the `_bimi` subdomain.
- Provider Requirements: Understand the specific requirements of different email providers, particularly regarding VMCs.
- Email Authentication Setup: Confirm that SPF, DKIM, and DMARC are properly configured before implementing BIMI, as these are prerequisites.
Marketer view
Email marketer from OnlyMyEmail shares common BIMI errors include: incorrect DNS configuration, invalid SVG logo format (e.g., raster images saved as .svg), and issues with the VMC if required by the mailbox provider.
7 Feb 2023 - OnlyMyEmail
Marketer view
Email marketer from dmarcian recommends using a BIMI inspector to check the status of your BIMI record. They highlight you can use their free tool to check if your domain is set up correctly.
24 Aug 2023 - dmarcian
What the experts say
4 expert opinions
Validating BIMI records involves ensuring the record exists at the root domain and testing with online validators. The DNS record should be located at `default._bimi.client.com`. Common SVG issues include incorrect sizing, not being a vector image, and accessibility problems. Testing across different email clients and using validation tools is essential to find and fix these issues. Ensure the logo is served over HTTPS.
Key opinions
- Root Domain: BIMI records should exist at the root domain.
- DNS Record Location: The correct DNS record location is `default._bimi.client.com`.
- Online Validators: Use online validators to test DNS settings, correct syntax, and HTTPS enablement of the logo.
- SVG Issues: Common SVG problems include incorrect sizing, non-vector images, and accessibility issues.
- Cross-Client Testing: Test across different email clients for full validation.
Key considerations
- Domain Verification: Verify that the BIMI record is correctly placed in the root domain.
- HTTPS: Ensure the logo is served over HTTPS.
- SVG Format: Confirm the SVG is a true vector image with correct sizing and accessibility.
- Testing: Regularly test BIMI implementation across various email clients and validation tools to find and resolve problems.
Expert view
Expert from Word to the Wise explains that common SVG issues include incorrect sizing, not being a vector image, or accessibility problems. She also explains you should test across different email clients, as well as using validation tools.
11 Jul 2021 - Word to the Wise
Expert view
Expert from Email Geeks answers that BIMI should exist at the root domain and you should add the root domain to the tools to test.
11 Jan 2025 - Email Geeks
What the documentation says
6 technical articles
Validating BIMI records and fixing common errors involves ensuring the DNS TXT record is correctly published in the domain's DNS zone, specifying the logo location and optionally a VMC. The SVG logo must be a square vector graphic without text, accessible via HTTPS. A VMC is a digital certificate authenticating the logo. Correct BIMI record syntax is `v=BIMI1; l=https://example.com/logo.svg; a=https://example.com/vmc.pem;`. Secure HTTPS with a valid SSL certificate is crucial for both the logo and VMC. Effective BIMI implementation requires full authentication with SPF, DKIM, and DMARC, with a DMARC policy of `p=quarantine` or `p=reject`.
Key findings
- BIMI Record Type: A BIMI record is a DNS TXT record.
- SVG Logo Requirements: The SVG logo must be a square vector graphic, without text, accessible via HTTPS.
- VMC Purpose: A VMC authenticates the logo and allows it to be displayed in participating email clients.
- BIMI Syntax: The correct BIMI record syntax is `v=BIMI1; l=https://example.com/logo.svg; a=https://example.com/vmc.pem;`.
- HTTPS Requirement: Both the logo and VMC must be served over HTTPS with a valid SSL certificate.
- Authentication Prerequisites: Effective BIMI implementation requires SPF, DKIM, and DMARC, with a DMARC policy of `p=quarantine` or `p=reject`.
Key considerations
- DNS Zone Publication: Ensure the BIMI TXT record is correctly published in the domain's DNS zone.
- Logo Accessibility: Verify the SVG logo is accessible via HTTPS.
- VMC Trust: If using a VMC, ensure it's issued by a trusted Certification Authority.
- DMARC Policy: Implement a DMARC policy of `p=quarantine` or `p=reject` for BIMI to function correctly.
- Valid SSL Certificate: Ensure you have a valid SSL certificate for both the logo and VMC
Technical article
Documentation from BIMI Group explains that a BIMI record is a TXT record published in the DNS zone of your sending domain. The record specifies the location of your brand logo file and optionally the location of a Verified Mark Certificate (VMC).
4 Feb 2024 - BIMI Group
Technical article
Documentation from Let's Encrypt says to ensure that both your logo and VMC are served over HTTPS using a valid SSL certificate from a trusted Certificate Authority. You can use Let's Encrypt for free certificates.
13 Jan 2022 - Let's Encrypt
Do I need a VMC for BIMI to work with Google and Gmail?
How can I check if a domain uses Entrust or Digicert for BIMI, and should I avoid Entrust?
How do I check Spamhaus for my IP address and understand the listings?
How do I implement BIMI and get my logo to show in Gmail and Yahoo Mail?
How do I troubleshoot BIMI logo not showing after implementation?
What are the requirements for BIMI SVG files and how do I validate them?
