08-02-2023 04:04 AM
Hi - we want to set up DKIM for outgoing mail traffic step by step.
We have created a DKIM Key and integrated it on the ESA (Signing Profiles, Signing Keys..)
DKIM Signing is not yet enabled on Mail FLoy Policy for outgoing Mails.
Next we plan to publish the DKIM PUB Key in Internet DNS.
Question - As long as we do not sign outbound on the ESA DKIM yet:
Does publishing DKIM key have consequences on non-signed mail?
We have no experience how remote MTA's handle Mails when
Thanks for experience!!!!
08-02-2023 04:32 AM - edited 08-02-2023 06:03 AM
The recipient system won't go looking for your DKIM records until you start signing mail.
For new DNS entries, generally you just need to give your DNS provider enough time to replicate your new record before you start signing. This is probably just a few minutes at most.
As a rule of thumb, you can publish your DKIM records, and then use Dig, or nslookup pointed at Google (8.8.8.8)or Cloudflare (1.1.1.1) to lookup your record. As soon as they return it, you can start signing mail.
08-02-2023 05:56 AM
THX Ken!!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide