When you send emails from Envoke - or any other email provider - your messages need to be authenticated to ensure that spam and malware filters on the recipient side can confirm that your messages and identity aren't forged.
What is DKIM?
DomainKeys Identified Mail (DKIM) is an email authentication method that is used to verify the identity of the email sender and detect forged email addresses, which is a technique often used in phishing and email spam.
How does DKIM work?
DKIM works in the background. There is no change in the way you use Envoke. It is setup on the domain level by the person/department that manages your domain name. Once setup, it allows spam and malware filters to authenticate your emails; to confirm that they are coming from you and not by someone else claiming to be you. This in turn, increases inbox delivery. Spam filters trust DKIM and as such fewer emails are filtered out as suspicious.
Default vs. custom DKIM setup
Envoke provides default DKIM authentication with each outgoing email, but in some cases this isn't sufficient to satisfy various email filters and custom authentication is needed for the sending domain. Organizations with strict email filtering in place are often the ones requiring custom setup (government, higher education, public bodies, associations, etc.).
Custom DKIM setup works especially well for internal messages where the sender email address and the recipient email address is from the same domain, for example from firstname.lastname@example.org to email@example.com
How to setup custom DKIM authentication?
Enabling DKIM is a technical task, you will need to work with the person who manages your domain.
- DKIM is enabled by domain names. Contact us (via support chat) and tell us which domain is used in your sender email address. For example if your sender "from" email address is firstname.lastname@example.org then the domain is mydomain.com
- We'll generate a code for this domain and send you instructions that you need to pass on to the person who manages your domain.
- A line of text needs to be added in the DNS record. Let us know when this is done.
- We verify the setup and enable DKIM for your account.
- After this all emails coming from this domain will pass DKIM authentication, making the emails far less likely to be blocked by spam filters.
Technical implementation note: The txt record for DKIM is longer than 255 characters. If you can't add a more than 255 character entry into your DNS then you need to use multiple txt records. Here is an article explaining the process.
Related article: SPF records