Back to Search

How to setup DKIM

Document ID: 10511

Synopsis

This document details how to setup DKIM in MailSite. DKIM allows you to sign outbound messages from MailSite. DKIM stands for DomainKeys Identified Mail. DKIM creates a domain-level aut

More Information

How to setup DKIM This document details how to setup DKIM in MailSite. DKIM allows you to sign outbound messages from MailSite. DKIM stands for DomainKeys Identified Mail. DKIM creates a domain-level authentication framework for email by using private-key cryptography and DNS records to prove the source and content of a message.

To enable DKIM on outbound messages you must enable it in MailSite and also update DNS. You will need to contact your DNS administrator for assistance with DNS management. DNS management is beyond the scope of MailSite Support.

To Enable DKIM in MailSite:

  1. Load the MailSite Console and select the domain you want to enable DKIM for, eg email.com.
  2. Select Domain Properties on the right hand side.
  3. Select DKIM tab
  4. Select 'Sign outgoing messages from this domain using DKIM
  5. If you already have a Private key you wish to use, then paste it into the 'Private Key' box, The 'Public Key' and 'Proposed DNS Entry' box will populate. If they fail to auto fill, it means the Private key you entered is invalid.
  6. If you do not have a private key already, select 'Generate New Key Pair'.
  7. Enter a DKIM Selector of your choice. This name will also be used in DNS, eg "sel2010", so it will read sel2010._domainkey.email.com

Updating DNS

This example is provided for a Windows 2003 DNS server. Your DNS administrator or provider can help you with setting up the record in your DNS server.
  1. Select your domain name in the Forward Lookup Zones for email.com
  2. Right click on the domain root and select 'New Domain. Name this "_domainkey"
  3. Select this newly created domain and on the right hand side right click and select "Other new records" and choose TXT record
  4. Set the record name to the selector specified in MailSite, in this case sel2010
  5. Copy and paste the 'Proposed DNS Entry' string from MailSite console into the 'text' box
  6. Save the changes.

You will need to wait for full DNS propagation to take effect, usually within 24 hours. You can use 3rd party website such as this one to verify the mail server is correctly signing messages.

More Information

More information can be found at http://dkim.org.