DomainKeys Identified Mail (DKIM)

This page has moved. You will be redirected in 5 seconds. Please bookmark the new page.

The DomainKeys Identified Mail (DKIM) protocol is an authentication method that digitally signs part of an email message so that receiving mail systems can verify it wasn’t altered after it was originally sent.

To use it, a sender decides which elements of a message they want to include for the signature — such as the header and body or individual fields in the header — and then configures their system to encrypt those selections with a private key when they send email. When a mailbox provider receives a message with a DKIM signature, they use the public key the sender lists for their domain in the DNS to “unlock” the private key.

For Luminate Online, our email system provides generic 1024-bit DKIM authentication — by default — which encrypts fields in the header of messages you send with a private key. When mailbox providers receive the messages, they use the public key we publish for our domain to unlock it.

Note: If a generic DKIM signature is not sufficient for your organization's unique needs, or if you'd like to implement a DMARC policy, you can request a custom DKIM signature for your domain.

Tip: If your organization published DKIM public keys with less than 1024-bits, we recommend you delete them. For Luminate Online, this recommendation includes public keys with the convio1 key.

For Altru, Blackbaud Internet Solutions, Blackbaud NetCommunity, and Online Express, you can request a custom DKIM signature for your domain.