ADD-ON

Setting up DKIM (DomainKeys Identified Mail) is an important step in email authentication to help prevent email spoofing and phishing attacks. DKIM uses cryptographic signatures to verify that an email message was sent from an authorised source and hasn't been tampered with during transit. Here are the steps to set up DKIM for your domain:

Access to DNS Records:

You need access to the DNS (Domain Name System) records for your domain. This is typically provided by your domain registrar or hosting provider.

Generate DKIM Keys:
  • Generate a DKIM key pair, which consists of a private key (used to sign outgoing messages) and a public key (published in your DNS records for verification).
  • You can use various DKIM key generation tools or email services to do this. Netset requires this Private key in DER format (binary)
Add DKIM DNS Record:
  • Create a TXT DNS record in your domain's DNS settings. The name of this record should be composed of the selector and the domain name, separated by a period (e.g., `selector._domainkey.yourdomain.com`).
  • The value of this TXT record should contain the public key generated in step 2, usually in a specific format like this:


v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC...

  • The exact format may vary depending on your email service provider or the DKIM key generator you used.

Publish the DKIM Record:

  • Save the TXT record in your DNS settings.

  • DNS changes may take some time to propagate across the internet. This can vary from minutes to a few hours or more.

Provide Netset the Private key to Configure Your Email Server/Service:

Provide Netset with the private key you generated in step 2 so we can configure your email settings to sign outgoing emails.

Test DKIM Configuration:

After setting up DKIM, it's a good practice to send a test email and check its DKIM signature using online DKIM verification tools to ensure everything is working correctly.

Monitor and Maintain:

  • Regularly monitor your DKIM records and email authentication status to ensure they are functioning properly.

  • Renew DKIM keys periodically for security reasons, typically at least once a year.

Remember that the specific steps and interfaces may vary depending on your email service provider, domain registrar, and DNS hosting service. Always refer to the documentation or support resources provided by these services for detailed instructions on setting up DKIM for your domain.

  • No labels