DKIM Configuration
DKIM (DomainKeys Identified Mail) adds a cryptographic signature to every email you send, proving it really came from yourdomain.com.
Why Use DKIM?
DKIM provides a way to validate a domain name identity that is associated with a message through cryptographic authentication. This ensures the email content wasn't altered in transit and significantly improves your sender reputation with providers like Gmail and Outlook.
Step 1: Get Your DKIM Selectors
Log in to Simply Send, go to the Domains page, select your domain, and navigate to the DNS Records page. Under the Email Authentication section, you will find your pre-generated DKIM selectors (simplysendo and simplysenda).
Step 2: Add DKIM CNAME Record
DNS Record Type & Name
Type: CNAME
Name/Host: simplysendo._domainkey.yourdomain.com
Why It's Needed
This CNAME record delegates the DKIM key management to Oracle Cloud, enabling robust cross-platform signing capabilities on our multi-region servers.
Note: The region section varies depending on your account region.
How to Update It
Add this CNAME record to your DNS provider (e.g., Cloudflare, Route 53):
Step 3: Add DKIM TXT Record
DNS Record Type & Name
Type: TXT
Name/Host: simplysenda._domainkey.yourdomain.com
Why It's Needed
This TXT record contains the raw public key that pairs with a private key stored safely on AWS infrastructure. It directly allows receiving servers to decrypt the email signature to verify that it hasn't been altered.
How to Update It
Add this TXT record to your DNS provider:
Step 4: Verify and Enable
Wait for Propagation
DNS changes can take anywhere from a few minutes to 24 hours to update globally.
Enable in Console
Once the DNS check passes, click "Enable DKIM" in your Simply Send dashboard to start signing emails.
Final Step: Enforce Policy (DMARC)
With SPF and DKIM configured, set up DMARC to tell receiving servers how to handle messages that fail these checks.
Configure DMARC