This article covers the SPF and DKIM authentication processes for Critical Impact and how they are managed in Valimail. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.

1. Go to Account -> Sender Authentication.

Note: If you do not see this tool, please reach out to your account manager.

2. Click the Add Domain button.

3. Enter the domain or subdomain you want to authenticate (e.g. abc.com) and click Save.

4. Select the newly added domain in the grid and click the Authenticate Domain button. This will generate the unique DNS instructions for your domain.

5. Click the Email Instructions button to receive a copy of the instructions in email form for you to forward to your IT team.

Important: If you manage DKIM for your domain in Valimail, you will need to add the TXT DKIM key on your domain's Configuration page in Valimail Enforce and any other remaining records in your DNS.

1. Once you have added the DNS records, select the domain and click the Authenticate Domain button.

2. When you see green check marks next to the Existing Values and Recommended values, click the Begin Authentication button in the top right. (If you see red x marks, it means that the values do not match. Please see notes below.)

3. You will receive an email notification confirming that your domain is now successfully authenticated in your account. The status for the domain in the grid will display Authenticated.

You can also find the instructions on how to set up DKIM and SPF for Critical Impact, here.

You can find more detailed information on how to add a DKIM key in Valimail, here:

Once you establish that Critical Impact is an authorized sender for your domain, you will need to add the service in your Enabled Senders.

You will find more detailed information on how to add a service for your domain in Valimail, here:

Note: We encourage you to use the comment section for any useful information about your sending service, such as the name of the service owner, change request ticket numbers, etc.