Why verify your email domain?
Administrators use the Account Settings page to send emails from Zoho Sign using their company's email address. This can help companies improve the authenticity and credibility of their message. However, when a third-party service like Zoho Sign sends out an email on your behalf, there's a chance that these emails may be considered spoofing, phishing attempts and marked as spam by the recipients email services based on their DMARC (Domain-based Message Authentication Reporting and Conformance) policy. To handle situations like this, we have introduced email domain verification in Zoho Sign using DomainKeys Identified Mail (DKIM) method.
What is DKIM?
DKIM is an email authentication method that helps companies take responsibility of their message in transit, and mailbox providers to check the source of each message using cryptographic techniques. For each email, DKIM will attach a signature during the transmission to verify the authenticity of the message source. This way, companies can prevent spammers from sending out emails impersonating them, and enable third-party services to send emails on their behalf without them being marked as spam.
Learn how to verify email domain ownership using DKIM
How DKIM works in Zoho Sign?
- A public key will be published as a TXT record for your domain's DNS Manager, and every outgoing email from Zoho Sign will have a signature attached to its header, generated using the private key of your domain.
- Your recipient's email server will check the email header of each message with the public key stored in your DNS record every time.
- This will help email services to verify your domain ownership.
- Emails will not be delivered if this verification fails.
For example, if
john@zylker.com
is sending a document to
mark@zoho.com
using Zoho Sign, the email from John will have a signature added to its header (generated using the private key of the domain-zylker) and the public key of the domain - zylker will be already published as a TXT record in the zylker's DNS Manager. Mark's email server will validate the email's legitimacy with John's email header and the public key stored in John's DNS record. If the verification is successful, the email sent by John will land into Mark's inbox.
For more information, refer to the
FAQ section
on DKIM configuration. To verify your email domain ownership using DKIM in Zoho Sign, you need to complete the three steps as mentioned below:
- Add domain name
- Add TXT record
- Verify domain ownership
Add domain name
This step is necessary for Zoho Sign to recognize your domain, and generate a key (hostname, value) for that domain.
- Navigate to Settings > Account settings > Email domain verification status.
- Click Verify now.
- Enter your domain name. For example, if your email is john@zylker.com, the domain name you'll have to enter is zylker.com.
- Click the Generate Key button. This will generate a hostname and value.
Add TXT record
In this step, you need to publish your domain's public key as a TXT record in your DNS Manager. Every outgoing email from Zoho Sign will have a signature added to its header generated using the private key of your domain. Your recipient's email server will validate emails sent from Zoho Sign using the public key published in your DNS record.
- Login to your DNS Manager.
- Select the TXT Method tab in the Domain Verification page.
- Create a TXT record in your DNS with the title as the hostname. For example, zoho._domainkey.zylker.org should be the name of the TXT record if that was the hostname provided.
- In the TXT record value, paste the content you copied from the Value field in Zoho Sign.
- Save the TXT record in the DNS Manager.
- Go to Zoho sign and click the Next button in the step-2 (Add TXT record)
Verify domain ownership
- Ensure you have completed adding the TXT record in the DNS Manager.
- Click the Verify Domain button.
- If the entry has been added correctly, your domain would be marked as verified and emails sent from Zoho Sign will be signed and verified using the key pairs.
- You should not remove this TXT record from your domain hosting console as long as you continue to use that email address in Zoho Sign. If not your email domain will be marked as not verified again and your emails may land in spam.
Note: It will usually take few hours for your domain to get verified based on the TTL (Time To Live) value in the TXT record.
1. I use Zoho Sign with Gmail, Outlook, Yahoo, Zoho, or another email account, can I use this feature?
No. You must have a custom domain for this feature to work. If you don't have a custom domain, we recommend that you use Zoho Sign's default notification email address to send emails rather than your email address. You can configure this in the Account Settings page by setting the Choose email address to send Zoho Sign mails from: dropdown to Zoho Sign notification email address.
2. Where can I find the steps to configure this feature?
Please read this section of our help documentation to learn how to configure this feature.
3. How long will it usually take to verify my domain?
It usually takes a few hours for your domain to get verified based on the TTL (Time To Live) value in the TXT record.
4. I have already verified my domain in another application, do I need to verify it again in Zoho Sign?
Yes. You need to verify your domain separately for the Zoho Sign application.
5. It's been more than a day since I completed the steps, why is my domain not verified yet?
The most common mistake that we see our users make is adding the domain name to the host value. Check your TXT record and make sure that your host value doesn't contain the domain name (Ex:152XXXXXXXXXX._domainkey). Write to
support@zohosign.com
if you need any further assistance.
6. How can we verify our domain in Zoho Sign if our company has outsourced IT services?
You need to contact your IT service provider to verify your domain in Zoho Sign. We recommend that you write an email to them and CC
support@zohosign.com
so it can be verified as quickly as possible.
7. Who should I contact in my company to verify our domain?
You need to contact your IT or sysadmin team to verify your domain in Zoho Sign. We recommend that you write them an email and CC
support@zohosign.com
to speed up the process.