Just another IT blog

AWS SES and WorkMail for the same domain in different regions

Let’s say you are already using SES to send out mail for your domain example.com. You verified the domain ownership by creating DNS TXT record _amazonses.example.com with required value. After some arguing with AWS support you got it out of sandbox. (Sometimes they refuse to do it for a long time, sometimes they do it on a first request. I supppose, they just roll a dice).

Now you want a WorkMail account to get mail for the same domain, and you create it in different region than the SES record. The thing is, WorkMail automatically creates a SES record in the same region. It requires this record to work, deleting it will break the WorkMail. This new SES record also belongs to example.com, but it is in sanbox, and it breaks your first SES record, because it sets _amazonses.example.com to another value.

To get this all working together, you may create DNS TXT record _amazonses.example.com with multiple values. In Route53 interface you can do it by enclosing both requred values in double quotes with a new line between them.

Or you can just use SES and WorkMail for a single domain always in the same region(which would probably save me some headache).


License: This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License Share: share on reddit share on hacker news share on facebook share on twitter share on linkedin share on slashdot