DKIM uses cryptographic signatures and public-key infrastructure to verify that an email message has not been altered during transit and that it truly came from the claimed sender. Email senders can use DKIM to sign their messages by adding a DKIM-Signature header field to the messages. Email receivers can then use the public key published in the DNS to verify the signature and check that the message has not been tampered with.
We’ll walk you through setting up DKIM keys for Zimbra in this article.
How to Set Up DKIM record for Zimbra Server
To start off you need to run the zmdkimkeyutil script on an MTA server. This assists you in creating DKIM keys for your LDAP-stored Zimbra server.
On running the script, DKIM DNS records must be added to your domain’s DNS in order to configure the protocol. Your DKIM record data will be generated and you can find it displayed on your screen. You need to copy this record to your keyboard.
The screenshot that is above is only an illustration. Please substitute your own domain name for domain.com and use the generated DKIM selector and public key instead of the ones provided. Follow these steps to authenticate Zimbra.
Sign in as the administrator of your DNS.
Zimbra’s public DKIM key should be pasted there under DNS records.
Save any updates you make, then give your DNS 48–72 hours to take effect. And that’s it!
Skysnag helps busy engineers enforce DMARC, responds to any misconfigurations for SPF or DKIM which increases email deliverability, and eliminates email spoofing and identity impersonation.
