Configure SPF and DKIM in cPanel


EXPERIENCING PROBLEMS WITH OUR SERVICES? RUN A DIAGNOSE FIRST TO SAVE YOURS AND OUR TIME

Added: 10.03.2014 23:26:29     Last updated: 13.01.2017 15:56:03

URL: https://www.proisp.no/guider/konfigurere-spf-dkim-cpanel Word count: 654 Title: Configure SPF and DKIM in cPanel Description: The guide details how to proceed to configure SPF and DKIM in cPanel. Keywords: spf,dkim,domainkeys,domain keys,cpanel,dns records,dns HTML:

This guide details how to configure SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) in cPanel.

SPF makes it possible for email servers to identify and stop emails with false senders. Normally, anyone can impersonate any email address, for example bill.gates@microsoft.com. When SPF is used, the email server which receives emails from bill.gates@microsoft.com can check if the email server that is pretending to send on behalf of bill.gates@microsoft.com, is really allowed to send on behalf of bill.gates@microsoft.com.

DKIM is designed to verify the sender email address’ domain and the email’s integrity. DKIM prevents a lot of fraud methods, but is not a complete solution. Google and Yahoo has used DKIM on their servers since 2004.

In short, the use of SPF and DKIM will:

  • Lower the likelihood of having the emails you send marked as spam
  • Increase the likelihood that emails that other people send pretending to be you, will be identified as spam

Step 1:
Click on the icon "Authentication" as shown in the screenshot below:

Authentication icon in cPanel


Step 2:
Click "Activate" to activate DKIM for your account.

Authentication page - Activate DomainKeys DKIM


Step 3:

  1. You will now see that Status is changed to "Activated Active".
  2. If you want to turn off DKM at a later time, you can click "Deactivate".
  3. Click "Activate" under SPF to enable SPF.

Authentication page - SPF Sender Policy Framwork


Step 4:

  1. If SPF was turned on without problems, you will get a similar message as in the screenshot below. In many cases you might get a message saying the server is not authoritarian name server for the domain.
    Always allow some time to pass for the listings to update, and then check again. The warnings should go away and DNS control shows green status that it has been completed.
  2. If, at a later time, you want to turn off SPF, you can click on "Deactivate"
  3. SPF will be set to "v=spf1 +a +mx +ip4:213.162.246.80 ~all" from the beginning. That means that (basically) only our server has permission to send email for the domain on your account. Explanation of the SPF setting:
    • v=spf1 tells the email server that SPF version 1 is in use.
    • +a tells that IPen(s) for the domains can send emails.
    • +mx tells that email servers listed for the domain can send email.
    • +ipv4: specifies which IP has permission to send email.
    • ~all tells that only what is stated has permission to send. ?all would have indicated that everything that has not been stated has permission, which means everyone can send.
  4. If you use our email server when you send emails from your domains, you don’t have to add anything in the marked area. If you don’t, you must add any other email server in the area below. See Sender Policy Framework for more guidance regarding SPF.
  5. If you are sure that all the servers you send from has been added in point 4, you can tick the field. If you are not sure, you should not tick.
  6. Tick to overwrite current listings.
  7. Click "Update" to save the settings.

Configure SPF in cPanel

Done
We have now been through how to configure SPF and DKIM in cPanel.