DKIM works by embedding a "signature" into the body of the message generated by Kerio Connect. Recipients can then retrieve your public key from your DNS zone file and verify that the signature matches the message. This means that you, as the sender, take responsibility for messages generated by Kerio Connect. When recipients get these messages, they can verify both your identity and the authenticity of the messages.
Enabling DKIM for Kerio Connect
The first step is to find your DKIM public key on Kerio Connect. To find it:
- Log in to your account in Kerio Connect
- In the administration interface, navigate to Configuration > Domains.
- Select your domain and click on the General tab
- Now click on the Show public key button.
- A dialog box opens up displaying your DKIM public key.
- Copy this text
Publishing the public key in the DNS:
- Gain access to your DNS
- Head over to the DKIM records section and create a TXT record. Fill in the record name and value provided by Kerio Connect
- Save changes to your record
Verifying your domain on Kerio Connect:
- Keep yourself logged in to your Kerio Connect account
- Navigate to Configuration > Domains.
- Double-click on your domain for which you have published the record, and go to the General tab.
- Activate the checkbox against Sign outgoing messages from this domain with DKIM signature.
- Save changes
Once your domain is verified and DKIM is enabled for it, you would be able to see a “Yes” status against your domain under the “DKIM Enabled” criterion on the Domains page as shown below: