The Skysnag Blog

How to Set Up DKIM for Zimbra?

October 11, 2023  |  2 min read

DKIM uses cryptographic signatures and public-key infrastructure to verify that an email message has not been altered during transit and that it truly came from the claimed sender. Email senders can use DKIM to sign their messages by adding a DKIM-Signature header field to the messages. Email receivers can then use the public key published in the DNS to verify the signature and check that the message has not been tampered with. 

We’ll walk you through setting up DKIM keys for Zimbra in this article.

How to Set Up DKIM record for Zimbra Server 

  • To start off you need to run the zmdkimkeyutil script on an MTA server. This assists you in creating DKIM keys for your LDAP-stored Zimbra server.
  • On running the script, DKIM DNS records must be added to your domain’s DNS in order to configure the protocol. Your DKIM record data will be generated and you can find it displayed on your screen. You need to copy this record to your keyboard. 

The screenshot that is above is only an illustration. Please substitute your own domain name for and use the generated DKIM selector and public key instead of the ones provided. Follow these steps to authenticate Zimbra.

  • Sign in as the administrator of your DNS.
  • Zimbra’s public DKIM key should be pasted there under DNS records.
  • Save any updates you make, then give your DNS 48–72 hours to take effect. And that’s it!

Use our free DKIM record lookup tool to validate the published DKIM record.

Enable DMARC for your domains to protect against spoofing. Sign up for a free trial today!

For more information on Zimbra DKIM setup, you can refer to their reference documentation

Check your domain’s DMARC security compliance

Enforce DMARC, SPF and DKIM in days - not months

Skysnag helps busy engineers enforce DMARC, responds to any misconfigurations for SPF or DKIM which increases email deliverability, and eliminates email spoofing and identity impersonation.