Page tree
Skip to end of metadata
Go to start of metadata

You can use DomainKeys Identified Mail (DKIM) to authenticate your outgoing white-labeled email.

The email is marked trusted, and receiving mail exchangers can verify that it is coming from an authorized source. For more information, see http://www.dkim.org/.

GoodData uses OpenDKIM. For more information, see http://www.opendkim.org/.

DKIM must be configured on two sides, yours and GoodData's.

There are two possible scenarios of setting up DKIM:

Using a specific private key to sign emails

  1. You send your private key to the person managing the white-labeling process with GoodData Support.

    We strongly recommend that you encrypt the private key. The private key contains sensitive information, which an unauthorized person can use to impersonate the server identity. To encrypt, you can use the GoodData PGP key or another encryption method available on your side. For the guidelines on how to encrypt a document using PGP, see GNU Privacy Handbook.

    As an alternative, we can generate a unique private key for you.

  2. You provide information which DKIM selector on which domain you use, so that the public key can be verified.
  3. We add your private key to the configuration of our email servers.

You can set up a separate key for each domain or mailbox that you use for sending email.

Once all the steps are completed, your outgoing emails are signed. If you use Gmail, you will see a "signed-by: your_domain.com" message in your email.

Using a GoodData shared key to sign emails

  1. You contact GoodData Support with a request for a DNS record with a public key.
  2. We provide you with a DNS record with a public key.
  3. You add the key to the DNS records of your domain.

Once all the steps are completed, your outgoing emails are signed. If you use Gmail, you will see a  "signed-by: your_domain.com" message in your email.

  • No labels