Email authentication

How to ensure you're able to receive emails from Click Travel.

Neil Rogers avatar
Written by Neil Rogers
Updated over a week ago

You should ensure your own IT Team are aware of this information if you are having difficulty receiving emails from Click Travel.

Click Travel uses the following methods to authenticate email sent from

  • SPF (Sender Policy Framework)

  • DKIM (DomainKeys Identified Mail)

  • DMARC (Domain-based Message Authentication, Reporting & Conformance)

It is highly recommended that you configure your email service to validate all three standards for inbound email to ensure that you only accept email legitimately sent by Click Travel.

The address header on transactional emails from Click Travel, such as booking confirmations and approval notifications, is:

If you use Microsoft Exchange 2010, we recommend you create a 'transport rule', with a condition that identifies email where the from header contains and an action that sets the spam confidence level to zero.

In addition, booking confirmation emails that include an e-ticket for rail journeys will contain a PDF and Apple Wallet pass, as attachments. To ensure these emails are received and the e-tickets accessible, your IT Team may need to specifically permit emails and downloads with the following file and MIME types:

.pkpass application/
.pdf application/pdf

If you're still not receiving emails from Click Travel, there are some further actions you should take:

  • Add to your Safe Senders list.

  • Whitelist the following address in your email client to make sure you’re getting updates from us -

  • Ensure no-reply@clicktravel is not present in your Blocked Senders list. It's worth noting that even if is included in your Safe Senders list, emails will still be blocked if the domain is also listed in your Blocked Senders list.

  • If only some users are not receiving emails from Click Travel, it may mean the actions above need to also be carried out with their individual email settings. Instructions on how to carry out these actions should be available from your email service provider. Instructions for Microsoft Outlook can be found here.

If you are implementing settings for all users in your organisation, you should also view the Supported web browsers and operating systems and Domain whitelisting articles.

Did this answer your question?