This article covers the SPF and DKIM authentication processes for SocketLabs and how they are managed in Valimail Enforce. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.
TABLE OF CONTENTS
- Configuring DKIM authentication for your SocketLabs emails
- Add a SocketLabs DKIM key in Enforce
- Configuring SPF authentication for your SocketLabs emails
Configuring DKIM authentication for your SocketLabs emails
Configuring "Bring your own TXT record" DKIM
1. SocketLabs have simplified this process through their DKIM Key Generator. During the process, the generator will ask you to choose a selector value. This value should only be alphanumeric characters, and we recommend fewer than 10 total characters. It serves as a name that you will use to refer to the DKIM keys you are creating.
Note: The default key value in the DKIM key Generator is 2048. We recommended that you do not lower it and leave it as it is, at 2048.
Configuring "Generate your own TXT record" DKIM
2. Even further simplified is the Generate your own TXT record option. When this option is selected, SocketLabs will generate and populate the key pair. The private key will be automatically added to your SocketLabs account. The public key will be provided so you can add that to Valimail Enforce.
3. After the DKIM key is generated, please add that to your domain's Configuration in Valimail Enforce.
4. After you add the DKIM key in Enforce, add the following information into the appropriate fields under Bring your own TXT record in your SocketLabs account. (If you selected Generate your own TXT record, this information was auto-populated.)
- DKIM Domain/Sending Domain
- DKIM Selector
- DKIM Private Key (produced during DKIM Key Generator process)
Note: The SocketLabs On-Demand Control Panel will not allow you to save the settings until it can verify the public key based on the domain and selector provided.
You can find the instructions on how to set up DKIM in SocketLabs here.
Add a SocketLabs DKIM key in Enforce
1. Go to your domain's Configuration page in Valimail Enforce and publish the newly created DKIM key.
a. Scroll down and add the two DKIM keys in your configuration, by clicking on Add a DKIM key.
b. Enter the selector name, the DKIM TXT value (the actual value is the entire string after the p= tag), associate the key with SocketLabs and then click Add.
You can find more detailed information on how to add a DKIM key in Valimail Enforce here.
Configuring SPF authentication for your SocketLabs emails
Once you establish that SocketLabs is an authorized sender for your domain, you will need to add the service in your Enabled Senders list in Enforce.
1. Please go to your domain's Configuration page in Enforce.
2. Click on the + sign from the Enabled Senders section:
3. Choose SocketLabs from the list of configurable senders and then click Enable:
We encourage you to use the comment section for any useful information about your sending service, such as the name of the service owner, change request ticket numbers, etc.
As always, if you have any questions, please don't hesitate to submit a ticket.