Set up the customer email sender
Emails sent from Sitecore Content Hub are signed using a DomainKeys Identified Mail (DKIM) record, which verifies that the sender is authorized to send emails on behalf of your domain.
We use a sender policy framework (SPF) record to whitelist the email sender. This record also instructs spam filters on how to handle emails from unauthorized senders.
Domain-based message authentication, reporting, and conformance (DMARC) records define rules and report unauthorized senders trying to send emails on behalf of the your domain. By notifying the sender that an email is authorized, it is not blocked or listed as spam.
To set up the customer email sender:
-
Create a service request
-
Configure SPF, DKIM, DMARC on the customer side
-
Validate the configuration
Create a service request
Create a service request that has the following:
-
SPF record
-
DKIM record
-
DMARC record
-
Domain name system (DNS)
The service request should also contain the following information.
Field |
Value |
---|---|
Title |
Email configuration request that provides SPF, DKIM, DMARC, and DNS records. |
Description |
Description of the ticket. |
|
The email of the sender, for example, |
Sender’s name |
The name of the sender, for example, Sitecore Content Hub. |
Configure the customer's side
The following must be configured on the customer's side:
-
DMARC
-
SPF
-
DKIM
There are four variables that impact the configuration.
Variable |
Description |
---|---|
Domain name |
The name of the domain. For example, if the sender's email is |
Subdomain (optional) |
The name of the subdomain (if applicable). For example, if the sender's email is |
DMARC admin email address |
The admin email address used to send information on blocked emails (for example, |
DKIM Config |
The required DKIM configuration, which is provided as a response on the service request ticket. |
Here are some examples:
CNAME: em400.mydomain.com
pointing to u2222.wl240.sendgrid.net
CNAME: 016._domainkey.mydomain.com
pointing to 016.domainkey.u2222.wl240.sendgrid.net
CNAME: 0162._domainkey.mydomain.com
pointing to 0162.domainkey.u2222.wl240.sendgrid.net
Configure DMARC
Make sure that there is a DMARC record configured on your domain. You can configure DMARC by adding policies to your domain’s TXT records:
Options |
Description |
---|---|
Option 1 - Without subdomain |
|
Option 2 - With subdomain |
|
Configure SPF
SPF is an email authentication method designed to detect forged sender addresses during the email delivery. An SPF record is a TXT record part of a domain's DNS. An SPF record lists all authorized host names and IP addresses permitted to send an email on behalf of your domain.
Options |
Description |
---|---|
Option 1 - There is an existing SPF record |
Add |
Option 2a - No SPF record exists (without subdomain) |
Create a new SPF record with the following details: |
Option 2b - No SPF record exists (with subdomain) |
Create a new SPF record with the following details: |
Configure DKIM
DKIM is a method to validate the authenticity of email messages. When each email message is sent, it is signed using a private key and then validated on the receiving mail server (or ISP) using a public key in DNS.
Create a DKIM record following the configuration provided as part of your service request.
Here are some examples:
-
CNAME: em400.mydomain.com
pointing tou2222.wl240.sendgrid.net
-
CNAME: 016._domainkey.mydomain.com
pointing to016.domainkey.u2222.wl240.sendgrid.net
-
CNAME: 0162._domainkey.mydomain.com
pointing to0162.domainkey.u2222.wl240.sendgrid.net
Validate the configuration
Once the support request and configuration are completed, you can verify the configuration on the DNS side. To do this, open a tool such as Dmarcian to validate your domain entries.
Validate DKIM
If the DKIM authentication is not found, insert the selector value created when configuring the DKIM text field into the Enter selector field and validate the DKIM record again.
Dmarcian is an external website not owned or managed by Sitecore. Dmarcian is used as an example. We do not provide support for products that are not owned by Sitecore.