This article covers the SPF and DKIM authentication processes for Virtru and how they are managed in Valimail. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.

Your Virtru representative will send you a 40 character alpha-numeric string. Please substitute this string where it says <virtru_supplied_token> below.

Please substitute your domain where it says <yourdomain.com> below.

CNAME Records

Created so Virtru can sign DKIM and the virtrugateway.com domain can send on behalf of your domain, please create each CNAME entry below:

Name: virtrugw._domainkey.<yourdomain.com>

Type: CNAME

Value: virtrugw._domainkey.virtrugateway.com

Name: virtrugw2._domainkey.<yourdomain.com>

Type: CNAME

Value: virtrugw2._domainkey.virtrugateway.com

TXT Record

Created so Virtru can verify domain ownership prior to implementation

Name: @

Type: TXT

Value: virtru-site-verify=<virtru_supplied_token>

Important: If you manage DKIM for your domain in Valimail, you will need to add the 2 CNAME DKIM keys on your domain's Configuration page in Valimail Enforce and the 3rd TXT record in your DNS.

You can also find the instructions on how to set up DKIM and SPF for Virtru, here.

You can find more detailed information on how to add a DKIM key in Valimail, here:

Once you establish that Virtru is an authorized sender for your domain, you will need to add the service in your Enabled Senders.

You will find more detailed information on how to add a service for your domain in Valimail, here:

Note: We encourage you to use the comment section for any useful information about your sending service, such as the name of the service owner, change request ticket numbers, etc.