Enabling DKIM signing for your domains can help you keep your email content intact throughout the delivery process, barring threat actors from accessing and altering your emails. This helps preserve your identity and eradicate spam and phishing attacks.
Creating DKIM Record for Cisco ESA
Step 1 create DKIM signing keys:
- Access your Cisco ESA account
- Navigate to Mail Policies > Domain Keys > Signing Keys
- Click on Add Key
- Enter a name for your DKIM selector (1024/2048 bits) and click Submit
- A key pair is now created for your domain
- Copy the public key which will be stored in DNS later on
Step 2 create a DKIM signing profile:
- To create a domain profile, select Mail Policies > Signing Profiles
- Click on the Add Profile button
- Enter a name and in the drop-down box select DKIM.
- The window will expand and you can enter the domain name, selector and private key that was created in the previous step
Step 3 enable DKIM signing on an outgoing profile
Navigate to Mail Policies > Mail Flow Policies
Select the OutgoingMail policy
Click on Relayed policy and scroll down to the Security Features
In the Domain Key/DKIM Signing field select On to enable DKIM signing for outgoing messages
Publishing your DKIM public key for Cisco ESA
After you get your public key from Cisco ESA:
- Login to your DNS provider’s management console as the admin
- Navigate to the DNS records section
- Create a TXT record
- Copy and paste the hostname and value
- Save changes to your record and wait for 48-72 hours for your DNS to process these changes
Lookup and validate the published DKIM DNS record using our free DKIM record lookup tool. Enable DMARC for your domains to protect against spoofing. Sign up for a DMARC trial today!
