TLS-RPT

Also known as: SMTP TLS Reporting, TLS Reporting

A setting that asks other mail providers to send you reports whenever email to your domain fails to arrive securely — your early-warning light for email delivery problems.

What it is

TLS-RPT (TLS Reporting) is a small instruction you publish for your domain asking other mail providers to send you a regular report whenever they had trouble delivering email to you over a secure, encrypted connection. It doesn’t block or change anything itself — it’s purely a feedback channel that turns invisible problems into something you can see.

Why it matters to your business

Secure email delivery usually happens silently in the background, which is great until something breaks — a misconfigured server, an expired setting, or an attacker tampering with connections. Without reporting, you’d have no way of knowing that mail to your domain had been failing or falling back to an unprotected connection.

TLS-RPT is the warning light on the dashboard. For a business, it means you find out about email security problems from a report, rather than from a customer asking why their message bounced — or worse, never knowing a message was intercepted. It’s the natural companion to MTA-STS: MTA-STS enforces secure delivery, TLS-RPT tells you when enforcement runs into trouble.

How to tell / what to do

Our free checker tells you whether your domain publishes a TLS-RPT record. Adding one is a single small DNS entry pointing to an address where the reports should be sent — a quick job for whoever manages your DNS, and free. It’s safe to add on its own and pairs naturally with MTA-STS.