Suped

How to find domainGUID and initialDomain for DKIM setup with custom domains in Office 365?

Summary

Setting up DKIM for custom domains in Office 365 requires specific identifiers: the domainGUID and the initialDomain. These values are crucial for configuring the necessary CNAME records in your DNS, which enables Office 365 to sign your outgoing emails with DKIM signatures. While the process can initially seem complex due to Microsoft's unique naming conventions, understanding where to find these identifiers simplifies the setup considerably, ensuring enhanced email authentication and deliverability.

Suped DMARC monitor
Free forever, no credit card required
Get started for free
Trusted by teams securing millions of inboxes
Company logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logoCompany logo

What email marketers say

Email marketers often encounter technical hurdles when setting up email authentication, especially with platforms like Office 365 that use specific, sometimes obscure, identifiers for DKIM. The initial confusion surrounding terms like domainGUID and initialDomain is a common sentiment, but many find that with persistence and attention to detail, these configurations become manageable. Community support and practical insights often bridge the gap left by overly technical documentation.

Marketer view

Marketer from Email Geeks describes the initial confusion with Microsoft's DKIM setup, noting that documentation often introduces terms like domainGUID and initialDomain without immediate clarity on their purpose or location. They express a common sentiment that while challenging at first, the process becomes straightforward once understood. This highlights the steep but conquerable learning curve.

15 Apr 2019 - Email Geeks

Marketer view

An Office 365 user from DuoCircle.com advises that before configuring DKIM, one must confirm their custom domain or subdomain is visible and correctly configured in the DKIM tab of the email authentication page. This ensures that the system recognizes the domain for which DKIM will be enabled. Verifying domain presence is a foundational step.

10 Mar 2024 - DuoCircle.com

What the experts say

Experts in email deliverability and Microsoft 365 configurations consistently highlight the importance of correctly identifying the domainGUID and initialDomain for a robust DKIM setup. They stress that these unique Microsoft-specific identifiers are non-negotiable for accurate CNAME record creation, which directly impacts email authentication. While the process might seem intricate, leveraging PowerShell and understanding Microsoft's architecture can streamline the setup, crucial for maintaining strong sender reputation and avoiding blocklists.

Expert view

Expert from Email Geeks emphasizes that proper DKIM setup is foundational for email deliverability, especially within Microsoft 365 environments, to ensure messages pass DMARC alignment checks. This critical step helps prevent emails from being flagged as spam or blocked, maintaining a strong sender reputation.

20 Apr 2023 - Email Geeks

Expert view

An email security expert from SpamResource.com advises that DKIM is essential for proving the authenticity of outgoing email messages, reducing the likelihood of spoofing and phishing attempts against your domain. They recommend validating the DNS records thoroughly to ensure proper functioning. This is a core component of domain protection.

01 Nov 2023 - SpamResource.com

What the documentation says

Official documentation from Microsoft and other authoritative sources provides precise instructions for configuring DKIM in Office 365 using custom domains. These documents typically detail the requirement for creating two CNAME records, outlining the specific format that incorporates the domainGUID and initialDomain. Adhering strictly to these guidelines is paramount for successful implementation, as deviations can lead to authentication failures and potential deliverability issues.

Technical article

Microsoft Defender for Office 365 documentation clarifies that the process of configuring DKIM for custom domains involves logging into the Microsoft 365 portal as an administrator and navigating to the domains section. This is where users can initiate the setup for their specific domain, ensuring the correct tenant context.

03 Mar 2024 - learn.microsoft.com

Technical article

Practical365.com documentation specifies that when implementing DKIM for Office 365, the CNAME record's host name should follow the pattern selector1._domainkey.<yourdomain>. The value (or Points to address) for this record is selector1-<domainGUID>._domainkey.<initialDomain>.onmicrosoft.com. This precisely outlines the structure needed for the DKIM CNAME records.

10 Apr 2018 - Practical365.com

13 resources

Start improving your email deliverability today

Get started