This article covers the SPF and DKIM authentication processes for GoodData and how they are managed in Valimail Enforce. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.


Configuring DKIM authentication for your GoodData emails

Please reach out to GoodData Customer Support or to your Account Manager on their side for providing you a DKIM key that can sign emails for your domain.

You can also find the instructions on how to set up DKIM and SPF here.

Add a GoodData DKIM key in Enforce

1. Go to your domain's Configuration page in Valimail Enforce and publish the newly created DKIM key.

    a. Scroll down and add the DKIM key in your configuration, by clicking on Add a DKIM key

    b. Enter the selector name, the DKIM TXT value (the actual value is the entire string after the p= tag), associate the key with GoodData and then click Add.

Add a DKIM key in Enforce

You can find more detailed information on how to add a DKIM key in Valimail Enforce here. 

Configuring SPF authentication for your GoodData emails

Once you establish that GoodData is an authorized sender for your domain, you will need to add the service in your Enabled Senders list in Enforce.

1. Please go to your domain's Configuration page in Enforce.

2. Click on the + sign from the Enabled Senders section:

add a service to the authorized in Valimail

3. Choose GoodData from the list of configurable senders and then click Add:

add GoodData as authorized in Valimail

Enable SPF alignment in GoodData for your domain

You may notice that GoodData emails are not authenticated via SPF, even after you have added GoodData to your domain's configuration. This is likely caused by GoodData not sending SPF aligned-mail and can be corrected by configuring a CNAME record.

More details on how to achieve this are found here.

As always, if you have any questions, please don't hesitate to submit a ticket.