SPF(supported)
DKIM(recommended)
This article covers the SPF and DKIM authentication processes for Proofpoint Hosted and how they are managed in Valimail. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.
Configuring DKIM authentication for your Proofpoint Hosted emails
In Proofpoint, go to Email Protection->Email Authentication->DKIM Signing->Keys
Follow the instructions below for each sending domain.
Click Generate Key
In the domain field, enter the domain name
In the selector field, put a unique entry for the domain.
Set the scope field to any
Disable processing for the default_inbound policy route
Click Add Entry
Click the Show button in the DNS TXT Record field after the entry populates. This will include the public key that you will need to add in Valimail.
Go to Email Protection->Email Authentication->DKIM Signing->General.
Set enable to On (This activates the keys and Proofpoint will start signing outbound emails for each domain configured in the steps above)
Save changes.
You can also find more information on the email deliverability practices for Proofpoint Hosted, here.
Add a Proofpoint Hosted DKIM key in Valimail
You can find more detailed information on how to add a DKIM key in Valimail, here:
Configuring SPF authentication for your Proofpoint Hosted emails
Once you establish that Proofpoint Hosted is an authorized sender for your domain, you will need to add the service in your Enabled Senders.
You will find more detailed information on how to add a service for your domain in Valimail, here:
Note: We encourage you to use the comment section for any useful information about your sending service, such as the name of the service owner, change request ticket numbers, etc.