FAQ: Custom Domain Authentication

Beginning February 1st, Google and Yahoo inboxes will be implementing stricter requirements for what type of mail they accept. Please review and re-verify your sender authentication to ensure it contains valid SPF and DKIM records as well as a DMARC policy such as v=DMARC1; p=none or stricter. Consult your IT department for the DMARC configuration that best meet your needs.

What is DKIM?

DKIM stands for DomainKeys Identified Mail, and essentially it 'signs' an email with a key that is verified to a domain for additional authenticity.

Do my emails sent through MC Trade Mass Communicator have SPF, DKIM, and DMARC?

Yes, with our delivery system update, every communication sent through the Mass Communicator now includes SPF, DKIM, and DMARC as required email authentication for emails sent from MC Trade.

Do I need to make any changes?

Yes, you must request that your domain (e.g. me@mydomain.com) be authenticated.  Any email sent through the MC Trade Mass Communicator are validated to our application's domain by default.

If you don't authenticate your domain, next to your 'Send From' name, on the email, a small line of text with 'via SendGrid' (our email service) is displayed.

Will my emails still get through to the recipient if I don't request my domain be authenticated?

Yes, the receiving mail server will confirm the message was sent from our server and match the DKIM key included in the message. Authenticating your domain changes the DKIM authentication to your domain, removing the 'via SendGrid' text. However, your domain must also be set up with a DMARC record, so you may need to validate your specific domain (see below, "How can I authenticate my domain?").

Does this replace the need for an SPF or DMARC record?

No, DKIM just confirms with a key that the server sending the message, sent the message.

The SPF record is still necessary to authenticate that emails with your email address as the 'Send From', sent from our server, are allowed/approved.

The DMARC record is still necessary to help determine whether or not an email is legitimately from the sender and what to do if it isn’t. 

How can I authenticate my domain?

This is a three step process:

1. Contact our Support team and provide the domain you want to authenticate (e.g. me@mydomain.com).

2. We will generate 3 CNAME records you will need to add to your DNS Host, and send the details for those 3 records back to you in an email.

3. Once you have added the DNS records, please let us know and we will verify and your domain will be authenticated.


Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request