When you send emails from Envoke - or any other email provider - your messages need to be authenticated to ensure that spam and malware filters on the recipient side can confirm that your messages and identity aren't forged.
What is DKIM?
DomainKeys Identified Mail (DKIM) is an email authentication method that is used to verify the identity of the email sender and detect forged email addresses, which is a technique often used in phishing and email spam.
How does DKIM work?
DKIM works in the background. There is no change in the way you use Envoke. It is setup on the domain level by the person/department that manages your domain name. Once setup, it allows spam and malware filters to authenticate your emails; to confirm that they are coming from you and not by someone else claiming to be you. This in turn, increases inbox delivery. Spam filters trust DKIM and as such fewer emails are filtered out as suspicious.
Default vs. custom DKIM setup
Envoke provides default DKIM authentication with each outgoing email, but in some cases this isn't sufficient to satisfy various email filters and custom authentication is needed for the sending domain. Organizations with strict email filtering in place are often the ones requiring custom setup (government, higher education, public bodies, associations, etc.).
Custom DKIM setup works especially well for internal messages where the sender email address and the recipient email address is from the same domain, for example from firstname.lastname@example.org to email@example.com
Check DKIM status
You can check if DKIM is enabled from the Domains section on the Account Settings page. If DKIM isn't enabled then you'll see a note that "DKIM is not currently configured for your account". If DKIM is enabled then you'll see information about the DKIM record:
How to setup custom DKIM authentication?
Enabling DKIM is a technical task, you will need to work with the person who manages your domain.
- DKIM is enabled by domain names. Contact us (via support chat) and tell us which domain is used in your sender email address. For example if your sender "from" email address is firstname.lastname@example.org then the domain is mydomain.com
- We'll generate a code for this domain and post this on the Domains area of your Account Settings page.
- You need to add a TXT record to the DNS of your domain.
- Let us know when this is done so we can verify the setup.
- After this all emails coming from this domain will pass DKIM authentication, making your emails far less likely to be blocked by spam filters.
Technical implementation note: The txt record for DKIM is longer than 255 characters. If you can't add a more than 255 character entry into your DNS then you need to use multiple txt records. Here is an article explaining the process.
Related article: SPF records