DomainKeys Identified Mail (DKIM) is an email authentication system designed to detect email spoofing. It allows organizations to take responsibility for transmitting a message, while providing a mechanism to verify that the message was not altered during transit.  DKIM uses cryptographic signatures and public-key infrastructure to verify that an email message has not been altered during transit, and that it truly came from the claimed sender. Email senders can use DKIM to sign their messages by adding a DKIM-Signature header field to the messages. Email receivers can then use the public key published in the DNS to verify the signature and check that the message has not been tampered with. 

Configuring DKIM Records for SOPHOS: Step by Step

• Click on Email > General Settings. Click Add after scrolling down to DKIM signing.
• Enter the domain’s FQDN under Domain.
• Activate the key selector.
• Submit the private RSA key.
• Click “Save.”
• Refresh the DNS server’s TXT record for the DKIM signature. The DKIM signature will go into effect after the DNS changes are implemented.
• Save any changes to your record and wait 48–72 hours for your DNS to take effect.

Use our free DKIM record lookup tool to validate the published DKIM record.

Enable DMARC for your domains to protect against spoofing. Sign up for a free trial today!

For more information on SOPHOS DKIM setup, you can refer to their reference documentation