# BIMI > BIMI can show a brand logo in some inboxes, but it depends on strong authentication and inbox support. - Human page: https://mailrith.com/guides/bimi - Markdown page: https://mailrith.com/guides/bimi.md - Category: Authentication and Deliverability - Reading time: 6 min read - Related keywords: BIMI, BIMI guide, Authentication and Deliverability, Authentication and Deliverability guide, email sending guide, email marketing guide, email deliverability guide, DMARC, Sender Reputation and Spam Rate ## AI Agent Notes - Use this page as plain-language guidance for the specific email sending issue named in the title. - Preserve the distinction between Mailrith, an email delivery service, DNS, and inbox providers when explaining fixes. - When a user is running a free tool, pair the tool result with the relevant issue or step section from this guide. ### BIMI BIMI can show a brand logo in some inboxes, but it depends on strong authentication and inbox support. BIMI stands for Brand Indicators for Message Identification. In simple terms, it is a way for some inboxes to show a verified brand logo beside authenticated email. BIMI is not the first thing to set up. It usually depends on strong DMARC enforcement and other brand verification steps. If SPF, DKIM, DMARC, permission, and list quality are weak, a logo will not fix the sending program. A BIMI setup usually has three parts. First, your regular email authentication must be strong. Second, a BIMI DNS record points to a logo file. Third, some mailbox providers require a certificate or verified mark certificate before showing the logo. Support varies by inbox provider, so not every subscriber will see the logo even when BIMI is configured correctly. BIMI should be treated as brand polish, not as the foundation of deliverability. Before BIMI, make sure the sender identity, [SPF](https://mailrith.com/guides/spf.md), [DKIM](https://mailrith.com/guides/dkim.md), [DMARC](https://mailrith.com/guides/dmarc.md), [DMARC Alignment](https://mailrith.com/guides/dmarc-alignment.md), content, permission, and list quality are solid. 1. Set up SPF, DKIM, and DMARC first. 2. Move DMARC toward enforcement only after legitimate mail passes authentication and alignment. 3. Prepare a BIMI-compatible logo file and check current certificate requirements for the inbox providers you care about. 4. Publish the BIMI DNS record only after the brand and authentication pieces are ready. 5. Test in inboxes that support BIMI and remember that some inboxes may never show the logo. - Set up SPF, DKIM, and DMARC before thinking about BIMI. - Check whether your inbox targets support BIMI. - Expect logo and certificate requirements to vary by inbox provider. - Do not use BIMI as a substitute for good sender reputation. - If your DMARC policy is still `p=none`, BIMI may not work for many inboxes. - A missing logo does not always mean email delivery is broken. It may mean that inbox provider does not show BIMI for that message. - BIMI depends on the same domain trust covered in [Sender Reputation and Spam Rate](https://mailrith.com/guides/sender-reputation-and-spam-rate.md). ## Fix Common Issues ### Missing BIMI Record A checker did not find a TXT record beginning with `v=BIMI1` at `default._bimi.yourdomain.com`. 1. Do not start with BIMI if SPF, DKIM, DMARC, and alignment are not already working. 2. Prepare a BIMI-compatible SVG logo file. 3. Check whether the inbox providers you care about require a certificate. 4. Create the TXT record at `default._bimi` only after the logo and verification pieces are ready. 5. Run the BIMI checker again after DNS propagation. ### Multiple BIMI Records A checker found more than one BIMI TXT record at the same BIMI host. 1. Open the DNS zone for the domain. 2. Find every TXT record at `default._bimi`. 3. Keep one record that starts with `v=BIMI1`. 4. Remove duplicate or old BIMI records. 5. Run the BIMI checker again and confirm only one BIMI record is returned. ### BIMI Logo URL Missing A checker found a BIMI record, but the record does not include an `l=` logo URL. 1. Prepare the logo as a BIMI-compatible SVG file. 2. Host the logo at a stable HTTPS URL. 3. Edit the BIMI record and add `l=https://...` with the real logo URL. 4. Save the DNS record and run the checker again after propagation. ### BIMI Logo Is Not HTTPS A checker found a BIMI logo URL that does not start with `https://`. 1. Move the logo file to a secure HTTPS URL. 2. Open the URL in a browser and confirm it loads without certificate warnings. 3. Update the BIMI `l=` value to the HTTPS URL. 4. Run the BIMI checker again. ### BIMI Logo Format Needs Review A checker cannot tell whether the BIMI logo URL points to a BIMI-compatible SVG file. 1. Confirm the logo file is an SVG prepared for BIMI. 2. Avoid using PNG, JPG, or a normal website logo file as-is. 3. Use the exact logo requirements from the BIMI or certificate provider you are following. 4. Update the BIMI record after the logo file is corrected. ### BIMI Certificate Not Published A checker found no `a=` certificate URL in the BIMI record. 1. Check whether the inbox providers you care about require a Verified Mark Certificate or Common Mark Certificate. 2. If a certificate is required, complete the brand verification process with the certificate provider. 3. Host the certificate at the URL the provider gives you. 4. Add the certificate URL to the BIMI record with `a=https://...`. 5. Run the BIMI checker again. ### DMARC Is Not Enforcing for BIMI A checker says the domain's DMARC policy is missing, `p=none`, or otherwise not enforcing. 1. Use DMARC reports to find every system that sends as the domain. 2. Fix legitimate senders so they pass aligned SPF or DKIM. 3. Send real test emails and confirm DMARC passes. 4. Move DMARC from `p=none` toward `p=quarantine` or `p=reject` only when legitimate mail is ready. 5. Run the BIMI checker again after the DMARC change propagates. > Do BIMI after the basics. A logo can support trust, but it cannot replace authentication, permission, and wanted email. Related resources: - [DMARC](https://mailrith.com/guides/dmarc.md): Understand the policy BIMI commonly depends on. - [Sender Reputation and Spam Rate](https://mailrith.com/guides/sender-reputation-and-spam-rate.md): Understand why logo display is not the same as deliverability. ## Related Guides - [Sender Domains and Email Authentication](https://mailrith.com/guides/sender-domains-and-authentication.md): Your sender domain is the name inboxes learn to trust, and authentication proves that your email delivery service is allowed to send for it. - [From, Reply-To, and Return-Path](https://mailrith.com/guides/from-reply-to-and-return-path.md): An email has several sender-related addresses, and each one has a different job in delivery and replies. - [DNS, PTR, and Reverse DNS](https://mailrith.com/guides/dns-and-reverse-dns.md): DNS records identify your domain, while reverse DNS helps inboxes check whether a sending IP has a sensible hostname.