Cisco Cisco Email Security Appliance C170 Guia Do Utilizador

On the bounce profile associated with the public listener where you will send signed outbound messages, 
go to Hard Bounce and Delay Warning Messages. 

Enable “Use Domain Key Signing for Bounce and Delay Messages”:

You must have completed all steps listed in 

to sign bounced and delay messages. 

The From: address in the domain profile must match the address used for the bounce return address. To 
ensure these addresses match, you can configure a return address for the bounce profile (System 
Administration > Return Addresses), and then use the same name in the Profile Users list in the domain 
profile. For example, you would configure a return address of MAILER-DAEMON@example.com for 
the bounce return address, and add MAILER-DAEMON@example.com as a profile user in the domain 
profile. 

Create a new or import an existing private key. For information on creating or importing signing keys, 
see 

.

Create a domain profile and associate the key with the domain profile. For information on creating a 
domain profile, see 

.

Create the DNS text record. For information about creating the DNS text record, see 

If you have not already done so, enable DomainKeys/DKIM signing on a mail flow policy for outbound 
mail (see 

Optionally, enable DomainKeys/DKIM signing for bounced and delay messages. For information about 
enabling signing for bounce and delay messages, see 

.

Send email. Mail sent from a domain that matches a domain profile will be DomainKeys/DKIM signed. 
In addition, bounce or delay messages will be signed if you configured signing for bounce and delay 
messages.

If you create both a DomainKey and DKIM profile (and enable signing on a mail flow policy), AsyncOS 
signs outgoing messages with both a DomainKeys and DKIM signature.