Momentus provides you with outgoing email capabilities from our software, upon request. These emails are processed through SendGrid, a leader in trusted email delivery for many large companies and organizations. Momentus customers benefit from SendGrid’s automated security, in which they fully manage the SPF and DKIM records to prevent phishing and spoofing. SendGrid allows you to authenticate your domain(s) by setting up DNS records which allows SendGrid to send emails on your behalf.
SendGrid automatically suppresses emails sent to users for a variety of reasons to aid you in having the best possible reputation you can have by preventing unwanted mail. Examples of suppressions are:
- Blocks - The recipient's email server rejects the message for a reason related to the message, not the recipient address. This may be due to the Sending IP or the message content.
- Bounces - The recipient’s email server rejects the message, or sends the message back to SendGrid, due to an issue with the recipient address or account.
- Invalid Emails - The recipient address does not exist at the mail server you sent to.
- Spam Reports - The recipient marks your email as spam.
SendGrid FAQs
- What is SendGrid?
- Is SendGrid secure?
- Is there an additional cost to the client for SendGrid?
- What is Domain Authentication?
- Does SendGrid support SPF and DKIM?
- Does SendGrid support DMARC?
- Can we authenticate multiple domains and is there a limit?
- Can we authenticate a subdomain?
- Can we use SendGrid without authenticating a domain?
- What IP addresses does SendGrid emails use?
What is SendGrid?
SendGrid is a cloud-based SMTP service that Momentus has strategically partnered with for sending emails from our Cloud-hosted environments. Renowned as a leader in trusted email delivery, SendGrid caters to numerous large companies and organizations.
Our customers at Momentus reap the benefits of SendGrid's automated security features, including fully managed SPF and DKIM records designed to prevent phishing and spoofing attempts. SendGrid facilitates domain authentication through the setup of DNS records, empowering them to send emails on behalf of our clients.
SendGrid not only ensures reliable email delivery, but also enhances security measures to safeguard against potential threats, providing a robust solution for your email needs.
Is SendGrid secure?
SendGrid upholds rigorous security standards across various domains, encompassing physical security, access control, account management, people security, system development, incident management and response, as well as business security. In the transmission of your emails, SendGrid employs opportunistic TLS, making attempts using outbound TLS 1.1 or higher.
Demonstrating commitment to security compliance, SendGrid is PCI-DSS compliant (Level 4 merchant), and its data centers boast SSAE-16 SOC2 Type II attestation. To ensure uninterrupted service, SendGrid incorporates redundancy within each data center for primary mail flow, maintaining monthly uptimes typically in the 99.95% range.
As an added layer of security, Momentus takes measures by creating separate SendGrid sub-users and distinct API keys for clients, ensuring isolation and enhancing overall security protocols.
Is there an additional cost to the client for SendGrid?
No, there is no extra cost for using SendGrid – it comes fully included with our service.
What is Domain Authentication?
Domain authentication is the process of confirming to email providers that SendGrid has the authorization to send emails on your behalf. To establish domain authentication, Momentus facilitates the setup by providing you with specific DNS records to integrate into your sending domain. You will receive three CNAME records tailored to manage SPF and DKIM without interfering with your existing records.
Once the domain authentication is in place, recipients of your outgoing emails will perceive them as originating from your domain rather than sendgrid.net. This not only reinforces your brand identity but also enhances the credibility of your email communications.
Does SendGrid support SPF and DKIM?
SendGrid fully manages the SPF and DKIM records for outgoing emails without affecting your existing SPF or DKIM records.
Sender Policy Framework (SPF) is an open standard aimed at preventing sender address forgery. SPF ensures that the IP address from which a message is sent to is authorized to send mail on behalf of the domain in the email’s Envelope From or return-path.
DomainKeys Identified Mail (DKIM) is an authentication standard used to prevent email spoofing. Specifically, DKIM attempts to prevent the spoofing of a domain that is used to deliver email by attaching a unique DKIM signature header to the message which is then compared to the sender’s public DKIM key in DNS. If the values match, the message is proved authentic.
The full SendGrid SPF documentation is located here at https://docs.sendgrid.com/ui/account-and-settings/spf-records.
The full SendGrid DKIM documentation is located at https://docs.sendgrid.com/ui/account-and-settings/dkim-records.
Does SendGrid support DMARC?
SendGrid extends support for Domain-based Message Authentication, Reporting, and Conformance (DMARC). DMARC was devised to instruct receiving email servers on how to handle messages that fail both SPF and DKIM validation.
While DMARC records are not mandatory for verifying domain authentication, it's important to note that configuring a DMARC record is highly recommended, especially for companies sending a high volume of email. This recommendation stems from the need to comply with the new Gmail/Yahoo email authentication requirements. Failing to set up a DMARC record could potentially hinder the proper delivery of emails. The Momentus team is ready to assist and guide you through the configuration steps if you haven't set one up yet.
For detailed guidance on implementing DMARC with SendGrid, you can refer to the full SendGrid DMARC documentation at https://docs.sendgrid.com/ui/sending-email/how-to-implement-dmarc.
For additional details on the new Gmail/Yahoo requirements, you can refer to the full SendGrid article at https://sendgrid.com/en-us/blog/gmail-yahoo-sender-requirements.
Can we authenticate multiple domains and is there a limit?
Yes, SendGrid allows authentication of up to 3000 domains.
Can we authenticate a subdomain?
Yes, we support the authentication of subdomains such as "email.yourdomain.com".
Can we use SendGrid without authenticating a domain?
While it is possible to utilize SendGrid to send emails without authenticating a domain, it is worth noting that authenticated emails have a higher chance of successful delivery and generally considered more secure. Unauthenticated emails may be flagged as suspicious, leading to potential delivery issues. In addition, the absence of authentication can erode the brand trust associated with the email, creating a perception that the email might have been spoofed or tampered with during transit.
What IP addresses does SendGrid emails use?
The SendGrid email service employs two dedicated static IP addresses for sending emails: 149.72.201.3 and 167.89.9.96. These IPs are exclusively designated for Momentus, serving as secure channels through which emails are transmitted. This setup not only ensures the security of email communication, but also contributes to enhanced email deliverability and flexibility.
Comments
0 comments
Please sign in to leave a comment.