SAP Knowledge Base Article - Public

3223594 - DKIM Enablement in S/4HANA and SMC Systems

Symptom

Mails are not being received by the recipients which are sent from custom sender domains after mail server migration.

Environment

S/4HANA Public Cloud and SAP Marketing Cloud

Cause

Overview of Mail server migration:

As a part of enhanced security and state of the art infrastructure, mail server is being migrated to the Converge Cloud Solution – Cronus on Amazon SES. To achieve this migration, DKIM enablement for custom domains is pre-requisite.

Overview on DKIM:

DKIM is an e-mail authentication technique involving a digital signature that allows the receiver to check that an e-mail was sent and authorized by the owner of that domain. The DKIM signature is a header that is added to the message and is secured with encryption. By enabling DKIM you can make sure messages aren't altered in transit between the sending and receiving email servers. It uses public-key cryptography to sign emails with a private key as it leaves a sending email server.

Resolution

Custom domains which are used for internal purposes like workflow item, Purchase order approval, PR approval, etc., should be enabled the DKIM setup. This will ensure that emails sent through your SAP S/4HANA system are secure.

DKIM Process Flow:

1st. Run:

(Tuesday/Friday – For example if customer created a case on Monday, then 1st Run will trigger on Tuesday)

  • DKIM key will be generated
  • Cloud ops will send the key to customer to update their DNS

2nd. Run:

  • Once the customer updated their DNS, profile activation will take place in the next applicable run (Either Tuesday or Friday)
  • Post activation, DKIM setup will be completed

Kindly note that, DKIM run will be triggered only on Tuesdays and Fridays. Hence it will take 5-7 days to complete the DKIM setup and it may extend based on the time which customer is taking to update their DNS.

Kindly refer section 4.2.7 Secure Your Email Using DomainKeys Identified Mail (DKIM) of document Setting Up Output Management (1LQ) to know about process of DKIM and how to request for DKIM enablement request.

Keywords

S/4HANA Public Cloud, SAP Marketing Cloud, DKIM, DNS, Custom domain, Mail, mail server migration, no mail , KBA , XX-S4C-OPR-SRV , S/4HANA Cloud service requests , CEC-MKT-BA-UM , User Management , CEC-MKT-BF , Basic Functions , CEC-MKT-ITC , Installation and technical configuration , How To

Product

SAP S/4HANA Cloud all versions