Glossary

How do I set up SPF and DKIM for Zoho Campaigns?

Published on
October 1, 2025

How do I set up SPF and DKIM for Zoho Campaigns?

Zoho Campaigns lets you send bulk email, but you need to authenticate your domain first. Proper SPF and DKIM records tell inbox providers that your messages are legitimate, reducing spam folder hits and protecting your brand.

Zoho Campaigns SPF and DKIM setup

Quick Takeaways

  • Zoho Campaigns uses subdomain‑capable SPF – set it on the subdomain, not the root.
  • DKIM requires a TXT record named 5130._domainkey (or 5130._domainkey.yourdomain.com).
  • Publish the SPF CNAME from the “Custom Return Path” section.
  • Turn off Cloudflare proxy for the SPF CNAME to allow DNS propagation.
  • Verify both records in Zoho Campaigns; a green check confirms success.
  • Use Palisade’s tools to test SPF, DKIM, and DMARC quickly.

Frequently Asked Questions

  1. What is SPF and why does Zoho need a subdomain record? SPF (Sender Policy Framework) tells receiving servers which IPs are authorized to send mail for your domain. Zoho Campaigns sends from a sub‑domain, so the SPF record must be added to that sub‑domain to achieve alignment and avoid failures.
  2. How do I add the DKIM TXT record? Log into your DNS provider, create a TXT record with the host 5130._domainkey (or include your domain), and paste the DKIM value from Zoho. Save and wait for propagation, then click “Verify” in Zoho.
  3. Where can I find the SPF CNAME values? In Zoho Campaigns go to Settings → Custom Return Path, click “Setup” next to your domain, and copy the CNAME record shown. Add it to your DNS and disable any proxy status (e.g., Cloudflare).
  4. Do I still need a DMARC record? If you already have a DMARC record, you don’t need another. Each domain can have only one DMARC policy. Use Palisade’s Email Security Score to monitor compliance.
  5. How can I test that my records are working? Use Palisade’s SPF checker, DKIM validator, and the overall Email Security Score to verify proper setup.

Step‑by‑Step Guide

1. Open Zoho Campaigns Domain Authentication

Navigate to Settings → Domain Authentication. Locate the domain you want to protect and click “Setup”. A popup shows the SPF and DKIM values you’ll need.

2. Publish the DKIM Record

  1. Log into your DNS provider.
  2. Add a new TXT record.
  3. Set the Host/Name to 5130._domainkey (or 5130._domainkey.yourdomain.com).
  4. Paste the DKIM value from Zoho into the Value field.
  5. Save the record and return to Zoho to click “Verify”.

3. Publish the SPF CNAME

  1. In Zoho, go to Settings → Custom Return Path and click “Setup”.
  2. Copy the CNAME record (e.g., zcsend.net).
  3. Add it to your DNS as a CNAME for the subdomain provided.
  4. If using Cloudflare, turn off the “Proxy” toggle.
  5. After propagation, click “Verify Domain” in Zoho.

4. Verify and Test

When both records show a green check, your domain is authenticated. Run Palisade’s SPF test, DKIM test, and review the overall Email Security Score to ensure everything is aligned.

Additional Tips

  • Propagation can take up to 48 hours; be patient before re‑checking.
  • Keep your DNS records tidy—duplicate SPF or DMARC entries cause failures.
  • Regularly monitor your email security score to catch misconfigurations early.

Need Help?

If you run into issues, Palisade’s support team can walk you through the process. Contact us for personalized assistance.

Email Performance Score
Improve results with AI- no technical skills required
More Knowledge Base