Home / Security / Configure email authentication for every sending tool you use
Email Deliverability · Security Ring

Configure email authentication for every sending tool you use

1-2 hr depending on number of tools Impact: medium Effort: medium ✓ Manual completion

Every tool that sends email as your domain — your main provider, a marketing platform, a transactional email service, a CRM — needs its own correctly configured authentication, since SPF, DKIM, and DMARC are not a single domain-wide setting but need coordination across every actual sender.

Adding a new marketing or sales tool without updating your email authentication for it means that tool's email will fail authentication checks and likely land in spam, undermining the very campaigns it was meant to send.

How to do it

  1. 1
    List every tool that sends email as your domain
    Main provider, marketing platform, transactional email service, CRM, anything sending on your behalf.
  2. 2
    Confirm each is included in your SPF record
    Every legitimate sender needs an include in your one SPF TXT record.
  3. 3
    Set up DKIM signing for each individually
    DKIM is configured per sending service, not domain-wide, each tool needs its own setup.
  4. 4
    Verify with a real test email from each tool
    Confirm authentication actually passes, not just that configuration was entered.

Common mistakes

How you will know it is done

Every tool sending email as your domain passes SPF and DKIM authentication, verified with a real test.

Track this in your hive

The Security Ring turns this into a real, permanent mission — mark it complete once you have genuinely done it.

Open this mission in H.I.V.E. →