This article covers the SPF and DKIM authentication processes for Sophos Email Security and how they are managed in Valimail. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.

1. Go to Global Settings -> Domains settings/status and click on the domain you want to add a DKIM key to.

2. Click Add key.

3. Copy the DKIM information that is generated automatically and use it to create a DNS TXT record for your domain.

Important: If you manage DKIM in Valimail for your domain, you will need to add the TXT DKIM key on your domain's Configuration page in Valimail Enforce.

4. Once your DNS TXT record has been published, click on Test record to check that your DNS TXT record matches the information in Sophos Email.

5. Activate the DKIM key then click Save.

You can also find the instructions on how to set up DKIM and SPF for Sophos Email Security, here.

You can find more detailed information on how to add a DKIM key in Valimail, here:

Once you establish that Sophos Email Security is an authorized sender for your domain, you will need to add the service in your Enabled Senders.

You will find more detailed information on how to add a service for your domain in Valimail, here:

Note: We encourage you to use the comment section for any useful information about your sending service, such as the name of the service owner, change request ticket numbers, etc.