Adding DKIM to your Netigate account
DKIM – DomainKeys Identified Mail
The growth of the Internet has caused email systems to grow increasingly complex, with spam, phishing and forgery attacks plaguing users globally. Emails are getting stuck in spam filters! Sadly, Netigate survey invitations sent via email is not an exception.
What is DKIM?
DKIM lets an email sender digitally sign an email with a secret key. When the email is received the receiving party can use a publicly available key to validate the authenticity of the sender. This will let the Netigate email server sign all emails as they were sent from your mail servers and allowing any receiver to validate that the emails are not spam.
Activating DKIM in Netigate
If your organisation supports DKIM you can contact your account manager at Netigate and have him or her turn on the DKIM functionality for your Netigate account.
DKIM setup in Netigate
Once DKIM is activated you can access the setup in the Account Settings.
Adding a DKIM key
In order to add a DKIM key you will need to get help from your IT department. They need to generate a key for you, together with information about what domain and DNS identifier that should be used. Only one key will be actively used at a time but you can add and replace the old one with a new key whenever you want.
The domain name that your organisation is using as <yourdomain.com>
DNS Identifier points to the DNS TXT record that holds the public domain key. You might have it on the format:
<selector._yourdomainkey.yourdomain.com>. Only add <selector>.
Insert DKIM Key
Insert the full text that form your key. It normally contains some dashes and text specifying what kind of key it is. Paste the entire text in the field.
The date from which the key should be active.
The date when the key should no longer be used. It is prudent to use if you plan to rotate your organisation’s key with some frequency.
How do I generate a DKIM key?
There are multiple ways to generate DKIM keys. It can be done directly from your email system. For safety reasons, we recommend you to do it via your own systems and use that information in your Netigate account but if you are unable to do it from your systems you can use a DKIM-key generator.
For example, you can use DKIMCore.org
How to generate DKIM keys from DKIMCore
First of all you need to enter the domain name that your organisation is using as <yourdomain.com>. When entered you press “Generate” and wait for the information to be processed by the page.
When the page is ready you will see information about a “Private key”, “Public key”. You will need both these to set up DKIM.
Follow these steps to set up DKIM:
- You need to copy the public key and publish it in your domains DNS.
- Enter the DKIM settings in you Netigate account and insert the domain name that your organisation is using as <yourdomain.com>.
- Copy the DNS identifier for the public key and add it to your DKIM settings in your Netigate account. Example: xxxxxxxxxx.domainname
- Copy the “Private key” and insert it to the DKIM settings in Netigate.
- Insert the date from which the key should be active (Start date) and the date when the key should no longer be used (Valid until). It is prudent to use if you plan to rotate your organisation’s key with some frequency.
- Save the settings.
When the settings have been saved to Netigate you need to go back to DKIMCore and click the button “Delete this page” to make sure the information is removed and will not be accessible by anyone.