What sets the DKIM signature domain when relaying without auth through a trusted IP?

Discussion forum for Enterprise Edition.
Post Reply
kiamori
Posts: 329
Joined: Wed Nov 04, 2009 1:39 am
Contact:

What sets the DKIM signature domain when relaying without auth through a trusted IP?

Post by kiamori »

Currently we have an application that is IP whitelisted in order to send notifications for one of our SaaS solutions, it is signing with domain2, but we want it to sign with domain1. What determines what domain it uses for SKIM signature in this situation by ME?

For example:
we want d=domain1

but the header looks like this:

DKIM-Signature: d=domain2 *not correct*
Return-Path: notify@domain1 *correct*
Sender: notify@domain2
From: "Notification Service" <noreply@domain1> *correct*
X-Envelope-Sender: notify@domain2 *correct*

MailEnable-Ian
Site Admin
Posts: 9738
Joined: Mon Mar 22, 2004 4:44 am
Location: Melbourne, Victoria, Australia

Re: What sets the DKIM signature domain when relaying without auth through a trusted IP?

Post by MailEnable-Ian »

Hi,

DKIM checks the mail from address (envelope sender address) to get the DKIM record from DNS. The header example reports X-Envelope-Sender: notify@domain2 *correct* and therefore the DKIM signature needs to be domain2.
Regards,

Ian Margarone
MailEnable Support

Post Reply