SPF(supported) 
DKIM(recommended)



This article covers the SPF and DKIM authentication processes for HENNGE One and how they are managed in Valimail Enforce. While only one of the two authentication methods is required for an email to pass DMARC, our recommendation is to configure both whenever possible.




TABLE OF CONTENTS






Configuring DKIM authentication for your HENNGE One emails


1. Click on the [ Digital Signature ] → [ DKIM Setting ] in HENNGE Email DLP Admin Console and Choose the [ + ] button beside the [ Selector ].Steps for configuring DKIM (with screenshot where possible)


HENNGE One Internal Configuration Screen


2. The [ Create DKIM Selector ] Window will appear and please enter the Selector Name and chose Key Length 2048 Bits.


HENNGE One Internal Configuration Screen


3. Once the DKIM Selector has been saved, please select the selector created, the TXT Record to be added to DNS will appear.


Note*: By default, the value [ t=y; ] tag will appear in the test mode, when utilizing this feature for production, please remove  [ t=y; ] from the value.

Note**: To enable the DKIM-Signature for Multiple domains including sub-domain,

the TXT Record needs to be registered in DNS record for each domain.


HENNGE One Internal Configuration Screen


4. After the TXT Record has been registered to the DNS, please enter the domain that the DNS was registered for into the [ Domain Names ] and press [ Apply ].


NoteDKIM-Signature will be applied for the domains which is registered in the "Domain Names" field.

To enable the DKIM-Signature for multiple domains including sub-domain,

Please register the additional domain in the "Domain Names" field with a new line as attached image.



HENNGE One Internal Configuration Screen

HENNGE One Internal Configuration Screen


You can also find the instructions on how to set up DKIM and SPF here.






Add a HENNGE One DKIM key in Enforce


1. Go to your domain's Configuration page in Valimail Enforce and publish the newly created DKIM key.


    a. Scroll down and add the two DKIM keys in your configuration, by clicking on Add a DKIM key

    b. Enter the selector name, CNAME target value or TXT Key Value, associate the key/s with HENNGE One and then click Add.



You can find more detailed information on how to add a DKIM key in Valimail Enforce here. 






Configuring SPF authentication for your HENNGE One emails


Once you establish that HENNGE One is an authorized sender for your domain, you will need to add the service in your Enabled Senders list in Enforce.


1. Please go to your domain's Configuration page in Enforce.

2. Click on the + sign from the Enabled Senders section:


Valimail Configuration Screen


3. Choose HENNGE One from the list of configurable senders and then click Enable:


add a service to the authorized in Valimail



The sender had no direct instructions related to SPF Alignment. 
In case SPF alignment is not activated automatically, please reach out to HENNGE One for further instructions.







As always, if you have any questions, please don't hesitate to submit a ticket.