DKIM-Signature Body Hash Not Verified

Operating System & Version
Cent OS
cPanel & WHM Version
102.0.8

oleymedia

Member
Nov 26, 2014
7
0
51
cPanel Access Level
Root Administrator
I have setup DKIM in "Email Deliverability" in my domain

I sent a test email and analysed the result in MXToolbox and I am getting "DKIM-Signature Body Hash Not Verified" (see attached)

If I compare the "DKIM Public Record" that is displayed in MXToolbox with the DKIM record published/provided in cPanel it is exactly the same...

Therefore, I can only assume that the signature that is signing the actual emails is wrong but I dont know how to update or modify that?

How is that signature applied and what is it applied based on???

Further to this - I have run a few different test variations and have found some inconsistencies which may explain some of these issues - perhaps if I understood the differences I could resolve this...

I am sending emails with the following configurations:
mail server: mail.domain.com (domain.com.au is an parked domain within the main account domain.com)
sender authenticating on account: [email protected]
sender reply-to: [email protected] (no email account exists for [email protected] - just a forwarder)
 

Attachments

Last edited by a moderator:

Spirogg

Well-Known Member
Feb 21, 2018
700
155
43
chicago
cPanel Access Level
Root Administrator
no email account exists for [email protected] - just a forwarder)
have you tried to create the email and see if that makes a difference?

go in cPanel create that email for that domain and only allow for it to send emails. via cPanel manage email for that domain

then you won't get emails delivered to you but you will be able to send.

Screen Shot 2022-03-29 at 11.33.05 PM.png

you can set the option you want or need above snapshot

spiro
 

cPRex

Jurassic Moderator
Staff member
Oct 19, 2014
11,017
1,738
363
cPanel Access Level
Root Administrator
In the past, the MXToolbox has verification tool hasn't worked well. We have an older post addressing this:


I would try checking the keys by just sending a message to Gmail and seeing if the DKIM passes the verification.