Email authentication records play a vital role in verifying the legitimacy of emails sent from your server, enhancing deliverability and reducing the likelihood of messages being marked as spam. This knowledge base provides detailed information on how to set up and manage email authentication records in WHM cPanel.

1. Understanding Email Authentication Records:

   • Email authentication records are DNS records that help verify the legitimacy of emails sent from a domain.

2. Accessing DNS Zone Editor in WHM:

   • Log in to WHM using your administrator credentials.

3. Locating the DNS Zone Editor:

   • Navigate to 'DNS Functions' and click on 'DNS Zone Editor'.

4. Creating SPF (Sender Policy Framework) Records:

   • SPF records specify which mail servers are authorized to send emails on behalf of your domain.

5. Generating an SPF Record:

   • Use an SPF wizard or generator to create an SPF record specific to your server's configuration.

6. Adding SPF Record to DNS Zone:

   • In WHM's DNS Zone Editor, select the domain, click 'Add Record', and choose 'SPF' from the drop-down menu.

7. Configuring SPF Record Values:

   • Enter the SPF record value generated in step 5. This may include IP addresses or include statements for third-party services.

8. Creating DKIM (DomainKeys Identified Mail) Records:

   • DKIM records add a digital signature to outgoing emails, providing a method for recipients to verify message authenticity.

9. Generating DKIM Keys:

   • Use WHM's 'DKIM Key Generation' feature to generate a public and private key pair for your domain.

10. Adding DKIM Records to DNS Zone:

    • In WHM's DNS Zone Editor, select the domain, click 'Add Record', and choose 'TXT' from the drop-down menu.

11. Configuring DKIM Record Values:

    • Enter the DKIM record value generated in step 9 as a TXT record in the DNS Zone.

12. Setting up DMARC (Domain-based Message Authentication, Reporting, and Conformance) Records:

    • DMARC records help recipients verify that incoming messages are legitimate, and they provide instructions for handling unauthenticated emails.

13. Creating a DMARC Record:

    • Use a DMARC record generator to create a DMARC TXT record for your domain.

14. Adding DMARC Record to DNS Zone:

    • In WHM's DNS Zone Editor, select the domain, click 'Add Record', and choose 'TXT' from the drop-down menu.

15. Configuring DMARC Record Values:

    • Enter the DMARC record value generated in step 13 as a TXT record in the DNS Zone.

16. Testing Authentication Records:

    • Use online email authentication tools to verify that SPF, DKIM, and DMARC records are correctly configured.

17. Regularly Reviewing and Updating Records:

    • Periodically review and update authentication records to ensure they align with your server's email configuration.

18. Monitoring Email Deliverability:

    • Keep an eye on email deliverability and investigate any issues related to authentication records.

19. Educating Users on Authentication Best Practices:

    • Provide guidelines to users on how to set up authentication records for their own domains hosted on your server.

20. Documenting Authentication Records:

    • Keep detailed records of the authentication records set up for each domain on your server.

21. Implementing Multi-factor Authentication (Optional):

    • Enhance email security by implementing multi-factor authentication for email accounts.

Conclusion:

Setting up and managing email authentication records in WHM cPanel is essential for ensuring that emails sent from your server are authenticated and legitimate. By following the steps outlined in this knowledge base, you can effectively configure SPF, DKIM, and DMARC records to enhance email deliverability and reduce the likelihood of messages being flagged as spam.