PowerMTA Support Forum

Please login or register.

Login with username, password and session length
Advanced search  

News:

PowerMTA 5.5r1 is out!!!!  Please contact support@port25.com for a license and download access.

Author Topic: PMTA - help to use DKIM signature  (Read 60470 times)

hlesta

  • Jr. Member
  • **
  • Karma: +1/-3
  • Posts: 30
PMTA - help to use DKIM signature
« on: February 21, 2018, 04:00:15 PM »

Hello there!

I'm working in our DKIM signature this quarter and I need to understand the best way to get one DKIM signature and migrate to PMTA.

Do you have any experience migrating from Postfix to PMTA?

Thank you!
Logged

Jasdev Singh

  • Port25 Support Engineer
  • Jr. Member
  • **
  • Karma: +6/-10
  • Posts: 93
Re: PMTA - help to use DKIM signature
« Reply #1 on: February 21, 2018, 04:17:17 PM »

Instructions on the setup of DKIM records and signing can be found in section 10.4 of the User's Guide, and you can use our DKIM Wizard (highly recommended) for the first time. The wizard can be found here:
http://www.port25.com/support/domainkeysdkim-wizard/

If you are using our wizard, you'll need to enter the TXT record into your DNS record for the public key as outlined in the wizard, and then save the private key to the PowerMTA server. 

Then, you'll need to add these two directives:
domain-key
dkim-sign yes


It will look like this in your config:
Code: [Select]
domain-key key1, yourdomain.com, C:\pmta\key1.somedomain.com.pem

<domain *>
  dkim-sign yes
</domain>

Make sure the path to the private key is valid, save config, and then reload. If DKIM doesn't work after ensuring the above is done, send a message to our auth-checker tool ( https://www.port25.com/authentication-checker ). It will reply with a report that includes reading a DKIM signature. If there is indeed a DKIM signature in the message, then the issue very likely lies outside of PowerMTA (likely DNS not yet or incorrectly set-up, wrong selector for it, etc.). Feel free to have the support team review the report by sending it to support@port25.com

*You may reuse the public/private key from Postfix into PMTA.
Logged

hlesta

  • Jr. Member
  • **
  • Karma: +1/-3
  • Posts: 30
Re: PMTA - help to use DKIM signature
« Reply #2 on: February 21, 2018, 04:52:26 PM »

Hello,

Thank you for the whole information.

We have a large amount of domains signed with our postfix dkim signature.

Is it possible use one .pem file to all domains?

Thank you!

Instructions on the setup of DKIM records and signing can be found in section 10.4 of the User's Guide, and you can use our DKIM Wizard (highly recommended) for the first time. The wizard can be found here:
http://www.port25.com/support/domainkeysdkim-wizard/

If you are using our wizard, you'll need to enter the TXT record into your DNS record for the public key as outlined in the wizard, and then save the private key to the PowerMTA server. 

Then, you'll need to add these two directives:
domain-key
dkim-sign yes


It will look like this in your config:
Code: [Select]
domain-key key1, yourdomain.com, C:\pmta\key1.somedomain.com.pem

<domain *>
  dkim-sign yes
</domain>

Make sure the path to the private key is valid, save config, and then reload. If DKIM doesn't work after ensuring the above is done, send a message to our auth-checker tool ( https://www.port25.com/authentication-checker ). It will reply with a report that includes reading a DKIM signature. If there is indeed a DKIM signature in the message, then the issue very likely lies outside of PowerMTA (likely DNS not yet or incorrectly set-up, wrong selector for it, etc.). Feel free to have the support team review the report by sending it to support@port25.com

*You may reuse the public/private key from Postfix into PMTA.
Logged