Cisco Cisco Email Security Appliance C190 Betriebsanweisung

Once you have associated a signing key with a domain profile, you can create DNS text record which 
contains your public key. You do this via the Generate link in the DNS Text Record column in the domain 
profile listing (or via 

domainkeysconfig -> profiles -> dnstxt

 in the CLI):

For more information about generating a DNS Text Record, see 

.

You can also view the public key via the View link on the Signing Keys page:

A domain profile associates a sender domain with a signing key, along with some other information 
needed for signing. A domain profile consists of the following information:

A name for the domain profile.

A domain name (the domain to be included in the “d=” header).

A selector (a selector is used to form the query for the public key. In the DNS query type, this value 
is prepended to the “_domainkey.” namespace of the sending domain).

A canonicalization method (the method by which the headers and content are prepared for 
presentation to the signing algorithm). AsyncOS supports both “simple” and “nofws” for 
DomainKeys and “relaxed” and “simple” for DKIM.

A signing key (see 

 for more information).

A list of headers and the body length to sign (DKIM only).

A list of tags you want to include in the signature’s header (DKIM only). These tags store the 
following information:

The identity of the user or agent (e.g., a mailing list manager) on whose behalf the message is 
signed.

A comma-separated list of query methods used to retrieve the public key.

The timestamp of when the signature was created.