DKIM record not found

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
Post Reply
bond1211
Posts: 7
Joined: Wed Aug 23, 2017 4:41 pm

DKIM record not found

Post by bond1211 »

Hello.

Code: Select all

 zmcontrol status
Host mail.strexp.com
        amavis                  Running
        dnscache                Running
        ldap                    Running
        logger                  Running
        mailbox                 Running
        memcached               Running
        mta                     Running
        opendkim                Running
        proxy                   Running
        service webapp          Running
        snmp                    Running
        spell                   Running
        stats                   Running
        zimbra webapp           Running
        zimbraAdmin webapp      Running
        zimlet webapp           Running
        zmconfigd               Running

Code: Select all

zmcontrol -v
Release 8.8.10_GA_3039.RHEL6_64_20180928094617 RHEL6_64 FOSS edition, Patch 8.8.10_P4.

Code: Select all

/opt/zimbra/libexec/zmdkimkeyutil -q -d strexp.com
DKIM Domain:
strexp.com

DKIM Selector:
18669BAC-F7B6-11E8-970E-9BED9A4286E9

DKIM Private Key:
-----BEGIN RSA PRIVATE KEY-----
******
-----END RSA PRIVATE KEY-----

DKIM Public signature:
18669BAC-F7B6-11E8-970E-9BED9A4286E9._domainkey IN      TXT     ( "v=DKIM1; k=rsa; "
          "p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7YHxaqsv7lft9CTtgnlcW4gsl67smdAowvWuwMmP04+ZyL4aMKUtMg7ZPer+qZeNuVc9+Xe0E1oRudThqIK5n0dXyCUfoEYIXP6qh9kYHyKWWOeqEI+jiyVpIDXATWZvh5CJD3ubN+0eFa7v2X6EoE6bfLEhl7IOfKVUQFIdXm0mHRju43/Kb6orytzpjih+BIZ3ljaK5DdiO"
          "iIgIpQI12QKGuVod61oxay8Gn36HV1WWp3hXJVYXq7fWDejXL3Rjjhw+1g52gRRZr8gvCLBib01TGNEtTzd7jXlNWdC1Az+NC0H6wSmS/zKdfJxnTxwiBvTJFUPl6PdiqwbpzBBwIDAQAB" )  ; ----- DKIM key 18669BAC-F7B6-11E8-970E-9BED9A4286E9 for strexp.com

DKIM Identity:
strexp.com

Code: Select all

host -t txt 18669BAC-F7B6-11E8-970E-9BED9A4286E9._domainkey.strexp.com 8.8.8.8
Using domain server:
Name: 8.8.8.8
Address: 8.8.8.8#53
Aliases:

18669BAC-F7B6-11E8-970E-9BED9A4286E9._domainkey.strexp.com descriptive text "v=DKIM1\; k=rsa\; " "p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7YHxaqsv7lft9CTtgnlcW4gsl67smdAowvWuwMmP04+ZyL4aMKUtMg7ZPer+qZeNuVc9+Xe0E1oRudThqIK5n0dXyCUfoEYIXP6qh9kYHyKWWOeqEI+jiyVpIDXATWZvh5CJD3ubN+0eFa7v2X6EoE6bfLEhl7IOfKVUQFIdXm0mHRju43/Kb6orytzpjih+BIZ3ljaK5DdiO" "iIgIpQI12QKGuVod61oxay8Gn36HV1WWp3hXJVYXq7fWDejXL3Rjjhw+1g52gRRZr8gvCLBib01TGNEtTzd7jXlNWdC1Az+NC0H6wSmS/zKdfJxnTxwiBvTJFUPl6PdiqwbpzBBwIDAQAB"

Code: Select all

/opt/zimbra/common/sbin/opendkim-testkey -d strexp.com -s 18669BAC-F7B6-11E8-970E-9BED9A4286E9 -x /opt/zimbra/conf/opendkim.conf
opendkim-testkey: '18669BAC-F7B6-11E8-970E-9BED9A4286E9._domainkey.strexp.com' record not found
What can be done?
Top
User avatar
JDunphy
Outstanding Member
Outstanding Member
Posts: 901
Joined: Fri Sep 12, 2014 11:18 pm
Location: Victoria, BC
ZCS/ZD Version: 9.0.0_P39 NETWORK Edition

Re: DKIM record not found

Post by JDunphy »

bond1211 wrote:"p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7YHxaqsv7lft9CTtgnlcW4gsl67smdAowvWuwMmP04+ZyL4aMKUtMg7ZPer+qZeNuVc9+Xe0E1oRudThqIK5n0dXyCUfoEYIXP6qh9kYHyKWWOeqEI+jiyVpIDXATWZvh5CJD3ubN+0eFa7v2X6EoE6bfLEhl7IOfKVUQFIdXm0mHRju43/Kb6orytzpjih+BIZ3ljaK5DdiO"
"iIgIpQI12QKGuVod61oxay8Gn36HV1WWp3hXJVYXq7fWDejXL3Rjjhw+1g52gRRZr8gvCLBib01TGNEtTzd7jXlNWdC1Az+NC0H6wSmS/zKdfJxnTxwiBvTJFUPl6PdiqwbpzBBwIDAQAB" ) ; ----- DKIM key 18669BAC-F7B6-11E8-970E-9BED9A4286E9 for strexp.com
[/code]
What can be done?
Your mistake was in entering your key... BIND has a line size limitation but can do concatenation and the tools spits out the format for that... But if you are using a DNS provider that provides you with a place to input the key, you need to remove those double quotes which represent different lines for BIND. Here is what your's would look like for entering into a DNS hosting provider with a web interface.

Code: Select all

p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7YHxaqsv7lft9CTtgnlcW4gsl67smdAowvWuwMmP04+ZyL4aMKUtMg7ZPer+qZeNuVc9+Xe0E1oRudThqIK5n0dXyCUfoEYIXP6qh9kYHyKWWOeqEI+jiyVpIDXATWZvh5CJD3ubN+0eFa7v2X6EoE6bfLEhl7IOfKVUQFIdXm0mHRju43/Kb6orytzpjih+BIZ3ljaK5DdiOiIgIpQI12QKGuVod61oxay8Gn36HV1WWp3hXJVYXq7fWDejXL3Rjjhw+1g52gRRZr8gvCLBib01TGNEtTzd7jXlNWdC1Az+NC0H6wSmS/zKdfJxnTxwiBvTJFUPl6PdiqwbpzBBwIDAQAB
Notice on your output above that you have BIZ3ljaK5DdiO" and then "iIg ... so it should be: BIZ3ljaK5DdiOiIg

This is what I saw when I pulled your text record... same result that you showed but those quotes and blanks really show up when you are looking for them. That isn't your key as a result and the lookup failed.

Code: Select all

nslookup
> set type=txt
> 18669BAC-F7B6-11E8-970E-9BED9A4286E9._domainkey.strexp.com
;; Truncated, retrying in TCP mode.
Server:		127.0.0.1
Address:	127.0.0.1#53

Non-authoritative answer:
18669BAC-F7B6-11E8-970E-9BED9A4286E9._domainkey.strexp.com	text = "v=DKIM1\; k=rsa\; " "p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7YHxaqsv7lft9CTtgnlcW4gsl67smdAowvWuwMmP04+ZyL4aMKUtMg7ZPer+qZeNuVc9+Xe0E1oRudThqIK5n0dXyCUfoEYIXP6qh9kYHyKWWOeqEI+jiyVpIDXATWZvh5CJD3ubN+0eFa7v2X6EoE6bfLEhl7IOfKVUQFIdXm0mHRju43/Kb6orytzpjih+BIZ3ljaK5DdiO" "iIgIpQI12QKGuVod61oxay8Gn36HV1WWp3hXJVYXq7fWDejXL3Rjjhw+1g52gRRZr8gvCLBib01TGNEtTzd7jXlNWdC1Az+NC0H6wSmS/zKdfJxnTxwiBvTJFUPl6PdiqwbpzBBwIDAQAB"
When Zimbra moved to larger keys, we saw this confusion. [bug]106785[/bug]
Top
Post Reply

Return to “Administrators”