Learn about DomainKeys (DKIM) and how Nexcess reseller clients can enable them.
DKIM refers to DomainKeys, an email authentication system designed to verify the domain name system (DNS) of an email sender. It also verifies the integrity of the message sent by the sender, thereby diminishing the risk of email spoofing.
As owner of your domain, you can generate a private or public key pair which will be used to sign all outgoing messages from your domain. The public key is placed in the DNS zone of the domain as a TXT, or text record. The private key is kept on the outgoing mail server for the domain. When you send an email, the outgoing server will digitally sign it using your private key. The digital signature is added in the DKIM Signature header in the sent email.
When your email is received, the recipient can then verify your DKIM signature using the public key in your domain’s DNS. If the signature matches, this means that you have validated both the sending domain and that the message has not been changed in transit.
ATTENTION: DKIM is an email authentication method and does not filter or identify spam. It is therefore recommended to use DKIM in conjunction with a spam prevention method such as Sender Policy Framework (SPF) records.
For more information about DKIM, visit their website.
Our award-winning customer care team is here for you.Contact Support