KnowBe4’s training emails contain a line of text called a DomainKeys Identified Mail (DKIM) signature that proves it is an authentic KnowBe4 email. We also have the option to enable this feature for phishing emails, if you would like. This guide will show you how to enable DKIM signatures for phishing emails from KnowBe4 and how to use an allowed domain as a custom DKIM signature for both training and phishing emails.
Enabling DKIM Signatures for Phishing Emails
By default, all KnowBe4 training emails contain a DKIM signature, but phishing emails require the account owner to enable this feature first. See below for steps on how to enable DKIM signatures for phishing emails.
- Log in to your KnowBe4 account.
- Click on your email in the top-right corner and click Account Settings.
- Under the Phishing Settings section, select the Enable DKIM Signature check box.
- Click Save Changes at the bottom of your Account Settings page.
All KnowBe4 phishing emails will now contain KnowBe4’s signing domain and can be used to verify if a phishing email is from KnowBe4 or if it is a real phishing attack. See the section below for information on how to customize the signing domain for phishing and training emails.
Using Custom DKIM Signatures in KnowBe4 Phishing Emails
After enabling DKIM signatures, your organization can adjust the signing domain for your organization’s needs. To use your own signing domain for phishing emails, follow the steps below:
- Log in to your KnowBe4 account.
- Click your email in the top-right corner of the page and select Account Settings.
- Under the Phishing Settings section, select the Enable DKIM signature check box if you haven’t enabled DKIM signatures already.
- Click Use Your Own Signing Domain.
- Choose the domain you want to use. To add a domain to this drop-down menu, you will first need to add an allowed domain in your KnowBe4 account. For more information, visit our How to Add and Verify Domains article.
- Click Create a DKIM Selector for This Domain.
- Copy the host name and values provided in the fields of the pop-up window.
- Navigate to your DNS provider and add a TXT record containing the copied information.
- Once you’ve created the TXT record in your DNS provider, click OK in the DKIM Selectors Details window in your KSAT console.
- Click Save Changes at the bottom of your Account Settings page.
Using Custom DKIM Signatures in KnowBe4 Training Emails
You can also use custom DKIM signatures for your training emails. To use your own signing domain in training emails, follow the steps below:
- Log in to your KnowBe4 account.
- Click your email in the top-right corner of the page and select Account Settings.
- Under the Training Settings section, select the Enable Custom DKIM Signature check box if you haven’t enabled DKIM signatures already.
- Choose the domain you want to use. To add a domain to this drop-down menu, you will first need to add an allowed domain in your KnowBe4 account. For more information, visit our How to Add and Verify Domains article.
- Click Create a DKIM Selector for This Domain.
- Copy the host name and values provided in the fields of the pop-up window.
- Navigate to your DNS provider and add a TXT record containing the copied information.
- Once you’ve created the TXT record in your DNS provider, click OK in the DKIM Selectors Details window in your KSAT console.
- Click Save Changes at the bottom of your Account Settings page.
For further assistance with this feature, please contact our support team and they will be happy to help.