How To: Sender Email/DKIM Setup

Why You Need to Add DKIM Records for Email Sending

We use Amazon SES (Simple Email Service) to send emails on your behalf from your domain. Since the sender is from your domain , this allows replies to your email address and also ensures better delivery based on your domain reputation and other factors. To ensure these emails are trusted and delivered successfully, we need you to add DKIM (DomainKeys Identified Mail) records to your domain’s DNS settings.

What is DKIM?

DKIM is an email authentication method that helps prevent email spoofing. It allows email providers to verify that emails sent from your domain are legitimate and haven't been altered in transit. Without DKIM, emails we send on your behalf might end up in spam folders or even be rejected. If you are not able to setup DKIM records, Jujama will instead send from our domain, from a no-reply address.

What Do You Need to Do?

Your IT team needs to add three CNAME records to your domain's DNS settings. These records are provided by us and help verify that we are authorized to send emails on your behalf. Your Jujama support representative can generate the records for you upon request.

For Your IT Dept

• Normally, these records and sending ability are added for your top-level domain, i.e. xyz.com. This will have DKIM alignment for DMARC purposes.
• A subdomain, such as abc.xyz.com can also be configured, if you wish to restrict sending to a subdomain. (this will also require a user mailbox or forwarding of the subdomain user so replies can be received)
• A custom Envelope FROM (return-path) domain can be used as well, but will require setting up an additional SPF record and MX record for the subdomain pointing to AWS to handle bounceback and complaint tracking. This setup is only necessary when both DKIM and SPF alignment are preferred over DKIM alignment alone. If DMARC is enabled, a relaxed alignment may be required, depending on setup.