DKIM Query.

Microsoft Q & A 381 Reputation points
2023-03-29T19:06:31.2666667+00:00

I am sending an email from application using my tenant domain. SPF and DKIM were getting sign in from the application domain , however DMARC getting failed because the from address is from my tenant domain.

Please correct me if i am wrong, i can fix this if i will update application domain DKIM key in my tenant domain DNS. Now the email DKIM will show from my domain and DMAR will get pass.

What value i need to get from application to update in my tenant domain DNS , i.e. TXT OR CNAME..?

Microsoft Exchange Online
Microsoft Exchange Online Management
Microsoft Exchange Online Management
Microsoft Exchange Online: A Microsoft email and calendaring hosted service.Management: The act or process of organizing, handling, directing or controlling something.
4,263 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Andy David - MVP 142.8K Reputation points MVP
    2023-04-06T11:59:19.2333333+00:00

    The DKIM records themselves are TXT. https://www.cloudflare.com/learning/dns/dns-records/dns-dkim-record/ You can point to them with a CNAME from another domain, but if you hosting the actual DKIM record, its a TXT record

    1 person found this answer helpful.
    0 comments No comments

  2. Andy David - MVP 142.8K Reputation points MVP
    2023-03-29T19:38:43.3466667+00:00

    You need a CNAME typically. that CNAME points to the source sender who manages the actual DKIM stamping.

    Example:

    https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/email-authentication-dkim-configure?view=o365-worldwide

    User's image