Authenticating messages with DKIM

DomainKeys Identified Mail (DKIM) signs outgoing messages from Kerio Connect with a special signature to identify the sender. Your users thus take responsibility for the messages they send and the recipients are sure the messages came from a verified user (by retrieving your public key).

To sign messages with a DKIM signature:

  1. Enable DKIM authentication in your domain settings.
  2. Add the DKIM public key to your DNS settings.

Enabling DKIM in Kerio Connect

  1. In the administration interface, go to section Configuration > Domains.
  2. Double-click your domain and go to tab General.
  3. Enable option Sign outgoing messages from this domain with DKIM signature.
  4. Save the settings.

To see which domains have DKIM enabled, add column DKIM enabled in section Configuration > Domains.

Your DNS records must include the DKIM public key for your domain. Without proper DNS records, Kerio Connect will send messages without the DKIM signature. Each message your users send will create an error message (see Error log).

For more information refer to Configuring DNS for DKIM.

Aliases

If the domain includes also aliases, add the DNS record also to all aliases.

Testing the DKIM signature

 

If you want to test whether your domain signs messages with DKIM, you can use for example the DomainKeys Test online tool.

  • 1 Users Found This Useful
Was this answer helpful?

Related Articles

Securing Kerio Connect

You can secure your Kerio Connect by: Restricting communication on firewall to necessary...

Configuring anti-spoofing in Kerio Connect

About Anti-spoofing Spammers can "spoof" your email address and pretend their messages are...

Password policy in Kerio Connect

To secure users and their passwords in Kerio Connect: Advise users to create strong...

Configuring DNS for DKIM

Adding a DKIM record to your DNS The process of adding a DKIM record to your DNS may vary...

Configuring SSL/TLS in Kerio Connect

NOTE New in Kerio Connect 8.5! Kerio Connect allows you to enable or disable specific...