SOLVED Exim how to override default dkim_selector

[Gino Viroli]

My domain is sending mails from two different VPS, cPanel/WHM is installed on both VPS.

The domain is also using a third party DNS, (not cPanel/WHM DNS)

I want to enable DKIM for outgoing mail authentication on both VPS, hence I went on both cPanel/WHM and turned on "Email > Authentication > DKIM" on both.

Both cPanel asked me to add to the DNS of my domain the following record:

default._domainkey.mydomain.com IN TXT "v=DKIM1; k=rsa; p=...

The problem is that obviously the two private/public key created on the two VPS by cPanel are different, but the DNS record to add to mydomain.com comes with the same name "default._domainkey"

Is there a way to tell cPanel (or at least Exim) to use a different DNS record for DKIM?
In this way I could set:
- VPS1 to send outgoing mail dkim signed that tells the recipient to look at the DNS record "myselector1._domainkey" instead of "default._domainkey"
- VPS2 to send outgoing mail dkim signed that tells the recipient to look at the DNS record "myselector2._domainkey" instead of "default._domainkey"
- Add to my domain's DNS both records:
myselector1._domainkey.mydomain.com IN TXT "v=DKIM1; k=rsa; p=somepublickey1...
myselector2._domainkey.mydomain.com IN TXT "v=DKIM1; k=rsa; p=somepublickey2...


Can I simply change dkim_selector in one of my VPS at "WHM > Service Configuration > Exim Configuration Manager > Advanced Editor"?

BTW: there is also a feature request for this: DKIM support for custom selector

 

[cPanelLauren]

Hello,

What might be easiest to do is have cPanel generate the DKIM with the default selector on one server, then transfer the private + public keys to the other server which are located at:

/var/cpanel/domain_keys/private/
/var/cpanel/domain_keys/public/

cPanel won't automatically generate any DKIM with a different selector if this is something you need I would suggest voting on the request.

Thanks!

 

[Gino Viroli]

What might be easiest to do is have cPanel generate the DKIM with the default selector on one server, then transfer the private + public keys to the other server which are located at:

/var/cpanel/domain_keys/private/
/var/cpanel/domain_keys/public/

Ok, this works, thanks!

 

[cPanelLauren]

Glad to hear it! Please let us know if you have any further issues!

Thanks!

 

[tui]

Hello,

What might be easiest to do is have cPanel generate the DKIM with the default selector on one server, then transfer the private + public keys to the other server which are located at:

/var/cpanel/domain_keys/private/
/var/cpanel/domain_keys/public/

cPanel won't automatically generate any DKIM with a different selector if this is something you need I would suggest voting on the request.

Thanks!

Is there any other way to achieve this? Im on the same situation but i only have root access only to one cpanel server, the other server is just a relay service (but its also cpanel and i have cpanel access) so i cannot transfer keys from/to one server to another as this post suggest

 

[cPanelLauren]

Hi @tui

Not with the access level you have because the private key needs to be stored. You may be able to reach out to your provider to get help with this.

Thanks!

 

[RHMcLean]

Since this is a common issue, how do we vote on this (configuring the selector) as a feature?

 

[Gino Viroli]

Since this is a common issue, how do we vote on this (configuring the selector) as a feature?

You can vote here: https://features.cpanel.net/topic/dkim-support-for-custom-selector