Organizational domain management
The list of domains below represents all possible domains that your organization claims ownership of under Secure Exchanges licenses. This means that in order to add a user to your organization, the domain of their email address must be part of your organization.
In order for your domain to be licensed, you must add a TXT record in your domain DNS. Click on next to your domain to find out what TXT value to add. If you have any difficulties, you can contact us at support@secure-exchanges.com.
If you are unable to add the TXT record to your DNS, you must contact our support team at support@secure-exchanges.com and you will be asked for proof that the domain belongs to you.
Users that have a public email address can be added without any special restrictions. For example, Outlook.com, Hotmail.com, Gmail.com.
Secure Exchanges reserves the right to refuse approval for a domain you claim.
What is an SPF Record?
An SPF (Sender Policy Framework) record is an email verification method that allows you to specify which mail servers are authorized to send emails on behalf of your domain.
Why Configure an SPF Record for Secure Exchanges?
Configuring an SPF record is necessary to allow Secure Exchanges to send emails using the email address of the user holding a Pro license, instead of the default address no-reply@secure-exchanges.com. This configuration ensures that the sent emails appear to come directly from the user, thus enhancing the credibility and personalization of the communication.
Creating or Modifying an SPF Record for Your Domain
- Check for an Existing SPF Record: Before adding a new record, check if your domain already has an SPF record. You can do this through your DNS management console or by using online tools like 'MXToolbox'.
- Create or Modify the SPF Record: If no SPF record exists, create a new TXT record. If an existing record is present, you will need to modify it to include Secure Exchanges.
- Configure the SPF Record Value: For a new record, enter the following SPF rule: spf.clients.secure-exchanges.com. For an existing record, add this rule to the current value.
- Save the Changes: After adding or modifying the record, save the changes. Click the 'Validate and Activate' button located at the bottom of this page. If the record is valid, the function will activate. You may have to wait up to 48 hours before you can 'validate and activate' the function. The shield will turn green if the function activates correctly.
Verifying Your SPF Record
After configuring or modifying your SPF record, it is important to verify it to ensure it is correctly configured.
Example of an SPF Record
Here is an example of what your final SPF record might look like in your DNS:
v=spf1 include:spf.clients.secure-exchanges.com include:another-service.com ~all
Be aware, if you disable the SPF function, emails sent from the platform will be sent from the address no-reply@secure-exchanges.com. This will take effect immediately for all users. If you are not sure, close the window or cancel.
What is DKIM?
DKIM, which stands for Domain Keys Identified Mail, is an email validation technique that allows an organization to take responsibility for a message in transit. This method is used to prevent emails from being altered or forged (It is recommended to have a DMARC associated with your DKIM).
Why configure a DKIM for Secure Exchanges?
If you use the SPF functionality with Secure Exchanges, then configuring DKIM is mandatory. We simply want to offer the same protection as your email servers. By configuring a DKIM for Secure Exchanges, you ensure the security and authenticity of the emails sent.
DKIM Configuration
- Copy the values Once you clicked on the 'Create new DKIM selector' button. You will now have your selector and key showing like the example bellow.
- Add the selector Once you've copied the selector and DKIM key, you can now add them to your DNS. Simply create a TXT record with the selector as key and the DKIM key as value in your DNS.
- Save the changes Your DNS can take up to 48 hours to be updated. You can come back to this page at any time to complete the configuration of your DKIM.
- Validate the selector Once the DNS is configured, you can click on 'Validate and activate the DKIM selector'. This action will check your DNS and validate that the selector contains the correct key as the value.
Here is an example of DKIM
Here is an example of DKIM in a DNS:
Selector:
Key:
Recommendations
We strongly advise that your configure a DMARC with your DKIM. Click here to access the DMARC configuration page.
Recommendations
Your DKIM is currently activated. If not already done, we strongly advise that you configure a DMARC with your DKIM. Click here to access the DMARC configuration page.
Deactivate DKIM
To disable your DKIM, simply click on the 'Deactivate DKIM' button.
DKIM Rotation
Alternatively, you can also create a new selector that will overwrite the currently active DKIM after its validation and activation. DKIM rotation allows you to create a new DKIM without disabling the old one. Your emails will remain signed throughout the entire DKIM change process.
Steps for DKIM Rotation
- Click on 'Create new rotation selector'
- Modify your DNS to include the selector and the key
- Finally, click on 'Activate Next Rotating Selector'