Email Authentication
What is email authentication?
Email Authentication is a security feature that verifies whether your domain is authorized to send emails. It helps reduce spoofing, phishing, and improves email deliverability. This setup involves DKIM and DMARC, which validate outgoing emails from your organization.
Email Authentication helps ensure the deliverability of emails sent from Zoho People. This also prevents emails from being marked as SPAM.
Understanding the email authentication page and the domains listed here
The Email Authentication page displays the list of domains that Zoho People may use as the "From address" when sending email notifications. These domains are automatically added by the system to support DKIM (DomainKeys Identified Mail) authentication, which enhances email deliverability and helps prevent spoofing.
Important Notes:
- Users do not have the ability to manually add or remove domains from the "Email Authentication" page.
- Domains listed are added by the system based on your account configuration. This includes domains currently used by active users in your Zoho People account, as well as verified domains associated with email addresses added under the "From Addresses" section. These addresses may have been manually added through CAPTCHA verification or are actively used to send email notifications from Zoho People.
- Public domains (e.g., gmail.com, outlook.com) are intentionally excluded, as DKIM cannot be configured for such domains.
Access email authentication settings
To access and configure Email Authentication:
- Navigate to: Settings > Manage Accounts > Organization Setup > Email Authentication
- You'll see a list of domains associated with your organization, along with their Authentication Status and DMARC setup status.
What domains will be listed here?
- Domains currently in-use by active users of your Zoho People accounts.
- Verified domains of email IDs added in the "From Addresses" page and manually added through CAPTCHA-verification. (i.e, Email IDs that are used to send email updates from Zoho People).
- Public email domains will no be listed here (example: gmail.com, outlook.com)
DKIM Authentication
What is DKIM authentication, and why is it necessary?
DKIM (DomainKeys Identified Mail) is an email authentication method that helps verify the legitimacy of emails by using cryptographic signatures. It allows companies to take responsibility for their emails while enabling mailbox providers to verify the sender’s identity and ensure the message's integrity.
When an email is sent, DKIM adds a digital signature to the email header. This signature is created using a private encryption key. The recipient’s mail server then checks this signature using a public key published in the sender’s domain’s DNS records.
By verifying this signature, DKIM ensures that:
- The email actually comes from the claimed sender.
- The message has not been altered during transmission.
This helps prevent spammers from forging emails to impersonate legitimate senders and allows authorized third-party services to send emails on behalf of a company without being flagged as spam.
ALERT! To ensure compliance with the latest security protocols, please note that all ‘from’ email addresses in your Zoho People account are using DKIM-authenticated domains. Only addresses that use DKIM authenticated domains can be used as ‘from’ addresses going forward.
NOTE
If DKIM Authentication is not performed, the default from address: noreply@zohopeople.com
will be used as the default and only from address for all emails sent from Zoho People.
will be used as the default and only from address for all emails sent from Zoho People.
Steps to configure DKIM for a domain or from address
- Navigate to Settings > Manage Accounts > Organization Setup > Email Authentication
- Click on the DKIM Details link for the domain that you would like to authenticate.
- You will see a series of steps within the product, which involves updating the DKIM data in DNS as a TXT record.
- Once the TXT is added successfully, allow some time for the changes to be reflected in the DNS servers.
- Ensure DKIM data has been updated properly. This may take a while.
- Click Validate Authentication to verify authentication.
Once "Validate Authentication" is clicked and authentication is verified the indicator will be change to Authenticated.
Understanding DMARC
DMARC (Domain-based Message Authentication, Reporting & Conformance)
DMARC works in conjunction with DKIM and SPF to enforce email validation policies. It tells receiving mail servers how to handle unauthenticated emails from your domain (e.g., reject or quarantine them).
Domains without a DMARC policy will display DMARC not set.
It’s highly recommended to configure a DMARC record for all active domains to prevent spoofing and improve email security.
It’s essential that all listed domains are DKIM authenticated and have a DMARC policy set for optimal email delivery and security.
Access your files securely from anywhere
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
New to Zoho Writer?
Create. Review. Publish.
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.
New to Zoho Survey?
Zoho Sheet Resources
Zoho Forms Resources
New to Zoho Sign?
Zoho Sign Resources
Sign, Paperless!
New to Zoho TeamInbox?
Zoho TeamInbox Resources
New to Zoho ZeptoMail?
Design. Discuss. Deliver.
New to Zoho Workerly?
New to Zoho Recruit?
New to Zoho CRM?
New to Zoho Projects?
New to Zoho Sprints?
New to Zoho Assist?
New to Bigin?
Related Articles
Email Templates
Email templates are pre-written, customizable formats that help save time and maintain consistency, especially when you need to send similar emails frequently. These templates typically include placeholders where you can insert personalized details ...Email Schedulers
Purpose Email scheduler is useful when you want to send reminders to your employees periodically. For example, if you would like your employees to submit their mobile bills for a claim on a particular date/day etc., you can create a scheduler. The ...Email Alerts Automation - Zoho People
What are Email Alerts in Zoho People? Email alerts in automation are predefined email notifications triggered by specific actions or events within a workflow. These alerts are used to keep users informed, provide updates, or request actions based on ...E-Signing a Document From Email
All documents that administrators send for e-signature are delivered via email. Recipients can open their email inbox to sign the document. Upon signing, the recipient can immediately download the e-signed document. Additionally, a copy of the ...Adding user failed - 'An invited user with the same email address already exists'.
This issue occurs when one of the invited users has a matching email address of one of the existing users in your organization. All active user email addresses must be unique. Try again with a unique email address.
New to Zoho LandingPage?
Zoho LandingPage Resources