DKIM Not signing emails...
Question asked by Constantine Serafim - 3/30/2016 at 9:44 AM
Answered
Using SmarterMail as an SMTP Server, login as administrator (SMTP in Outlook), and send an email that way the email sent is not DKIM signed. If you send an email from a SmarterMail user (say admin), then the email sent is signed OK. DKIM is set correctly in a DNS record and tested OK from within SmarterMail.
 
Can someone please tell me if anything else needed to be done to make this work?
 
Thank you

6 Replies

Reply to Thread
0
Michael Muller Replied
Having the same issue.
---
Montague WebWorks
Powered by RocketFusion
0
Lee Smith Replied
Did anyone get to the bottom of this?
0
Michael Muller Replied
We've upgraded twice since then, and are not experiencing any issues at this time.
---
Montague WebWorks
Powered by RocketFusion
1
Christopher Hiatt Replied
Working here. 

I've noticed that how the key is entered in the DNS host can make a difference. The key generated by SmarterMail may be something like xxxxxxxxxxx._domainkey.domainname.com. For mine to work with GoDaddy DNS I had remove the domainname.com part of the record name. They ended up looking like this.

Record type = TXT

Record name = xxxxxxxxxxx._domainkey
    (don't put the period after domainkey or your domain name in the record name. Just the key number with ._domainkey after it)

Record data = v=DKIM1;p=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxyourlongdkimkeyherexxxxxxxxxxxxxxxxxxxxxxxx
    (add v=DKIM1; before the actual record generated by SmarterMail)


0
Kyle Kerst Replied
Employee Post Marked As Answer
You're absolutely right Christopher. DNS key entry can vary from provider to provider and entering the record properly is critical to getting signing to work. This particular issue though appears to be something related to previous versions of SmarterMail, so I recommend upgrading and reviewing the DKIM keys through a DKIM check like the MXToolbox.com DKIM checker:


Kyle Kerst
Technical Support Specialist
SmarterTools Inc.
(877) 357-6278
www.smartertools.com
1
Sébastien Riccio Replied
In addition to Kyle suggestion of using mxtoolbox, to check if your dkim/spf/dmarc settings are working correctly, you can send a mail to check-auth@verifier.port25.com, from an account on the domain you want to verify.

It will reply back with diagnostics results.

IMHO this method is better as it also checks, for DKIM, if the server uses the right key to sign the mail.
Mxtoolbox only check if the DNS entry is valid but not if the server actually signs the mail correctly with the corresponding key. 
It was very useful to me to find out for some customers that their DNS dkim declaration didn't match the key generated by the server.



Sébastien Riccio
System & Network Admin

Reply to Thread