This article covers the SPF and DKIM authentication processes for SAP Cloud for Customer and how they are managed in Valimail. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.

1. Create an incident to request a DKIM key. Include your complete list of domains for outbound e-mail.

DKIM keys can’t be generated for the following domains:

2. SAP responds to the incident with your public DKIM key and selector details.

3. Use the public DKIM key and selector details to maintain a DKIM TXT record in your DNS server.

Note: If you manage your domain in Valimail, you will need to add the TXT DKIM key on your domain's Configuration page in Valimail Enforce.

4. You respond to the incident to confirm that you’ve added the DKIM key in your DNS server.

5. SAP activates the DKIM key for your solution and closes the incident.

You can also find the instructions on how to set up DKIM and SPF for SAP Cloud for Customer, here.

You can find more detailed information on how to add a DKIM key in Valimail, here:

Once you establish that SAP Cloud for Customer is an authorized sender for your domain, you will need to add the service in your Enabled Senders.

You will find more detailed information on how to add a service for your domain in Valimail, here:

Note: We encourage you to use the comment section for any useful information about your sending service, such as the name of the service owner, change request ticket numbers, etc.