Critical Impact

Supports SPF Does Not Support DKIM

SPF Setup for Critical Impact

*NOTE: Critical Impact does NOT publish a universal SPF record like include:spf.criticalimpact.com that every customer should use.

Instead, they provide customer-specific SPF instructions through their Sender Authentication tool in your Critical Impact account. That tool will generate the exact DNS record updates you need.

SPF and DMARC Alignment

By default, Critical Impact will set you up for sending using one of their domains for the return-path address. This domain will NOT pass SPF Alignment. At this time, this provider does NOT provide any mechanism that will allow SPF Alignment to pass. You need to enable DKIM for this provider to ensure your email will pass DMARC Compliance.

DKIM/SPF Setup Highlights

The below sections highlight notable characteristics of setting up DKIM and SPF for this provider as well as highlighting advanced settings if offered by this Outbound Email Source.

SPF

SPF Include Tag Required

This outbound email provider uses an include mechanism to add this provider's IP space to your SPF. To get fully set up with SPF for this provider, you will need to take the provided “include” domain and add it to your SPF record. An example of an SPF record without an include tag is compared to one with the tag added below (the include tags added are denoted in bold).

Initial SPF Record:

HOST	TEXT
yourdomain.com	v=spf1 ~all

SPF record include added:

HOST	TEXT
yourdomain.com	v=spf1 include:sender.net include:new3rdparty.com ~all

This outbound email provider does not allow a custom Return-Path address to be set.

SPF Support for criticalimpactinc

Providers