Godaddy email validating mx record
You need to do this for each domain that you use to send email.
DKIM signing does not inherit DKIM settings for other domains that you have provisioned for your organization.
Host name: selector1._domainkey Points to address or value: selector1-contoso-com._domainkey.contoso.TTL: 3600 Host name: selector2._domainkey Points to address or value: selector2-contoso-com._domainkey.contoso.TTL: 3600 For example, if your initial domain is contoso.and you have provisioned and fabrikam.com, you will need to provision 4 CNAMEs (two for each domain).
The two CNAMEs are so that we can perform automatic DKIM key rotation for you.
Even if you don’t enable DKIM, Office 365 will still (eventually) enable DKIM signing for your domain using the default signing configuration.
Suppose that was enabled by Office 365, not by the admin of the domain (so the required CNAMEs do not exist in DNS).
To test it out, wait a few minutes for the newly enabled DKIM domains to replicate throughout the network, then send a message to another account such as your Outlook.com/Hotmail account, Yahoo account, Gmail account, or other account that you have access to.
Open up the message and look at the message headers, looking for the To DKIM sign another domain, you must go through the above steps for each of the domains you want to DKIM sign unless you want to have them signed with the default DKIM signature for your organization (see below on Disabling DKIM).a) If you have another mail server positioned after Office 365 that relays out to the Internet, it may modify the message content and cause the DKIM signature not to verify.
If this occurs, you should ensure that Office 365 is the last service to relay out to the Internet, otherwise you may get some email bounces due to a broken DKIM signature.In cases like this, messages with failed DKIM signatures are not supposed to be bounced by the receiver, as per RFC 6376, section 6.1 and 6.2.If you continue to receive bounces, you should contact the recipient and inform them that rejecting on failed DKIM signatures is against the RFC because messages can be modified in transit, it is not malicious.In addition, you can ask them to locally allow your messages that are failing DKIM.For a company trying to DKIM-sign and fabrikam.com, you’d have four additional DNS records that look like this: Or, let us know when done and we will enable on the backend, you can request this by opening up a support ticket telling us which domains you want DKIM-signing for.