This wizard will allow you to easily create a public and private key pair to be used for DomainKeys and DKIM signing within PowerMTA™. The key pair will be used for both DomainKeys and DKIM signing.
***Policy records are no longer included as they are part of the deprecated DomainKeys, and not DKIM.***
Step 1: Configure your DNS server with the public key.
You need to add the following entry into your DNS server for $selector._domainkey.$domain.
Selector Record
$selector._domainkey.$domain IN TXT
“v=DKIM1\; k=rsa\; p=$onelinepublic”
(The above is the BIND DNS server syntax, and other DNS servers may not require the ‘ to escape the “;”.)
Click here for copy and paste version of Step 1
######BEGIN COPY######
Configure your DNS server with the public key.
You need to add the following entries into your DNS server for:
$selector._domainkey.$domain & _domainkey.$domain.
Selector Record
$selector._domainkey.$domain IN TXT “v=DKIM1\; k=rsa\; p=$onelinepublic”
(The above is the BIND DNS server syntax, and other DNS servers may not require the ‘ to escape the “;”.)
######END COPY######
Step 2: Save the private key to your PowerMTA™ server
Please copy the below text into a new file onto your server. You can name the file
$selector.$domain.pem for easy reference.You can save the file to
C:\pmta on windows or
/etc/pmta on linux.
$private
Step 3: Configure PowerMTA™ for DomainKeys/DKIM signing
Please refer to the PowerMTA™ User’s Guide for more information on using DomainKeys and DKIM within PowerMTA™.
Step 4: Check to make sure it is working
To use our automated testing tool, send a sample of a marketing
email or newsletter to get the summary results. Senders can choose where the results should be sent:
- If you wish to receive the results at the address in the “mail_from”, the sample message
should be sent to check-auth@verifier.port25.com.
- If you wish to receive the results at the address in the “from” header, the sample message
should be sent to check-auth2@verifier.port25.com.
- If you wish to receive the results at a different address from one of the addresses above,
the address need to be added to the check-auth address. For example, to send the results to:
jsmith@yourdomain.com the sample message should be sent to
check-auth-jsmith=yourdomain.com@verifier.port25.com.