This article covers the SPF and DKIM authentication processes for Gandimail and how they are managed in Valimail. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.

You can activate DKIM in your account by following these steps:

If your domain and email are hosted by Gandi, but you do not use Gandi LiveDNS (usually if you use a nameserver that is not provided by Gandi) then you can still activate this option manually by adding the following records to your domain.

gm1._domainkey 10800 IN CNAME gm1.gandimail.net.

gm2._domainkey 10800 IN CNAME gm2.gandimail.net.

gm3._domainkey 10800 IN CNAME gm3.gandimail.net.

All three CNAME records are needed in case of key rollover.

NOTE: If you manage you domain in Valimail, you will need to add the 3 CNAME DKIM keys on your domain's configuration page in the Valimail platform.

You can also find the instructions on how to set up DKIM and SPF for Gandimail, here.

You can find more detailed information on how to add a DKIM key in Valimail, here:

Once you establish that Gandimail is an authorized sender for your domain, you will need to add the service in your Enabled Senders.

You will find more detailed information on how to add a service for your domain in Valimail, here:

Note: We encourage you to use the comment section for any useful information about your sending service, such as the name of the service owner, change request ticket numbers, etc.