Important: It can take up to 48 hours for your updated DNS TXT record to take effect. If you turn on DKIM signing before the DNS TXT records update, Gmail can't find the DKIM domain key.
Turn on DKIM signing
From the Admin console Home page, go to AppsGoogle WorkspaceGmail.
- Click Authenticate email.
- Select the domain where you want to start email signing. The page shows the status of email signing for the domain you selected.
- To begin authenticating messages with DKIM, click the Start authentication button. When DKIM setup is complete and working correctly, the status at the top of the page changes to: Authenticating email.
Important: After you start authentication, the DKIM page in your Google Admin console might continue to display this message: You must update the DNS records for this domain. It can take up to 48 hours for email authentication to start. When the status changes to Authenticating email, your DKIM setup is complete.
- To verify that DKIM signing is turned on, send an email message to someone who is using Gmail or Google Workspace. You can't test DKIM setup by sending yourself a test message.
- Open the message in the recipient's inbox.
- Next to Reply, click More Show original to show the entire message header.
- In the message header, the line starting with DKIM-Signature confirms that DKIM signing is on:
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=solarmora.com; s=google;