Difference between revisions of "Configuring for DKIM Signing"

Line 7: Line 7:
 
Starting with Zimbra 8.0, the ability to add DKIM signing to outgoing mail is available.  Signing is done at the domain level.  Setting up signing consists of two steps:
 
Starting with Zimbra 8.0, the ability to add DKIM signing to outgoing mail is available.  Signing is done at the domain level.  Setting up signing consists of two steps:
  
# Running '''zmdkimkeyutil''' to generate the DKIM keys and selector
+
# Running '''zmdkimkeyutil''' to generate the DKIM keys and selector.  The generated data is stored in the LDAP server as part of the domain LDAP entry.
 
# Updating the DNS server with the public DNS entry
 
# Updating the DNS server with the public DNS entry
  
Line 18: Line 18:
 
# Query the DKIM data for a domain
 
# Query the DKIM data for a domain
 
# Remove the DKIM data for a domain
 
# Remove the DKIM data for a domain
 +
 +
=== Adding DKIM data to a domain with no existing DKIM configuration ===
 +
  /opt/zimbra/libexec/zmdkimkeyutil -a -d example.com

Revision as of 23:38, 3 May 2012

Admin Article

Article Information

This article applies to the following ZCS versions.

ZCS 8.0 Article ZCS 8.0

Zimbra Server with DKIM Signing

DomainKeys Identified Mail (DKIM) lets an organization take responsibility for a message that is in transit. The organization is a handler of the message, either as its originator or as an intermediary. Their reputation is the basis for evaluating whether to trust the message for further handling, such as delivery. Technically DKIM provides a method for validating a domain name identity that is associated with a message through cryptographic authentication

Configuring ZCS for DKIM signing

Starting with Zimbra 8.0, the ability to add DKIM signing to outgoing mail is available. Signing is done at the domain level. Setting up signing consists of two steps:

  1. Running zmdkimkeyutil to generate the DKIM keys and selector. The generated data is stored in the LDAP server as part of the domain LDAP entry.
  2. Updating the DNS server with the public DNS entry

The zmdkimkeyutil utility

The zmdkimkeyutil script allows you to do the following:

  1. Add DKIM data to a domain that does not currently have DKIM enabled
  2. Update DKIM data for a domain that already has DKIM enabled
  3. Query the DKIM data for a domain
  4. Remove the DKIM data for a domain

Adding DKIM data to a domain with no existing DKIM configuration

 /opt/zimbra/libexec/zmdkimkeyutil -a -d example.com
Jump to: navigation, search