Notifications
      Back to home
      1. Help Center
      2. Global
      3. Notifications

      Using Mail Signatures

      Using mail signatures will help prevent internal and external emails from going to spam folders by fixing DKIM spoofing issues.

      Overview

      Domain Keys Identified Mail (DKIM) signature is a method of email sender authentication. The main purpose of a DKIM signature is to prevent spoofing. Email spoofing changes the original message’s content and sends it from an alternative sender that looks like a trusted source. To prevent this, when an email is sent, the server generates a unique digital signature using a private key known only to the sender's domain and adds that digital signature to the email.

      When the email is received, the receiving email server uses the public key (of the DKIM public/private key pair) published in the sender's DNS records to verify the digital signature on the email. If the signature is verified, it ensures the authenticity of the email as well as the integrity of the email contents.

      In summary, when you generate a DKIM key pair, your email server holds the private key, i.e., the server sending your email. The public key is held by the domain (DNS) server; this is where your domain is hosted (e.g., if your email address is "YourName@yourcompany.com," the domain is "yourcompany.com"). The selector identifies the public key to use when a recipient server verifies the digital signature on your email.

      The ability to configure a DKIM signature is available in the application. First, generate a DKIM key pair (private and public keys). This process varies depending on the email server or service used. Next, add a DKIM selector TXT record to your DNS host with the public key as the value. The selector identifies the correct public key on the domain (DNS) server. Lastly, add a mail signature with the private key to the company. Once complete, the DKIM signature will be added to all sent emails.

      To Create a Mail Signature

      1. Create a DKIM key pair. This process varies depending on the email server or service you use.

      2. Add a DKIM selector TXT record to your DNS host with the public key as the value. One example of a selector is a subdomain. This process varies depending on your DNS host setup.

      3. In Fuse, navigate to the Mail Signatures page (Settings > Global Setup > Mail Signatures). Use the Add New button to add a new signature.

      4. In the Domain field, enter the domain for your email server.

      5. In the Selector field, enter the selector you used when you added the TXT record with the public key to your DNS host server.

      6. Select a Signing Algorithm. The most common is RSA.

      7. For the Private Key field, you can paste the private key into the field or use the Upload Private Key button to upload the private key file.

      8. Use the Save and Verify button to save and verify the signature.