SPF(supported) / (dedicated subdomain)
DKIM(recommended)



This article covers the SPF and DKIM authentication processes for FreshMail and how they are managed in Valimail Enforce. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.



TABLE OF CONTENTS





Configuring DKIM authentication for your FreshMail emails


1. Select Settings in the top right corner of the screen.



2. Next, click on the DKIM verification in the menu on the left.



3. You then need to click the Authenticate new domain.



4. This will open a domain authentication window for DKIM settings. Enter the address of the domain to which you wish to add the public key.

If everything is set correctly, your domain will be authenticated.


However, if you the status shows an unauthenticated domain, it is possible that either the domain was entered with an error (check again if there is no typo) or the security feature was set incorrectly.


In this case, click Verify and then copy the record displayed and place it in your server within the DNS zone.



5. That done, click the Verify button and confirm to authenticate the domain once again. If everything is fine, your domain will be displayed as authenticated.


If you have any problems or questions, write to: support@freshmail.pl



You can also find the instructions on how to set up DKIM and SPF for FreshMail, here.






Add a FreshMail DKIM key in Enforce


1. Go to your domain's Configuration page in Valimail Enforce and publish the newly created DKIM key.


    a. Scroll down and add the two DKIM keys in your configuration, by clicking on Add a DKIM key

    b. Enter the selector name, CNAME target value, associate the key/s with FreshMail and then click Add.




You can find more detailed information on how to add a DKIM key in Valimail Enforce here. 






Configuring SPF authentication for your FreshMail emails


Once you establish that FreshMail is an authorized sender for your domain, you will need to add the service in your Enabled Senders list in Enforce.


1. Please go to your domain's Configuration page in Enforce.

2. Click on the + sign from the Enabled Senders section:



3. Choose FreshMail from the list of configurable senders and then click Enable:




We encourage you to use the comment section for any useful information about your sending service, such as the name of the service owner, change request ticket numbers, etc.






As always, if you have any questions, please don't hesitate to submit a ticket.