Managing domains

You can claim and verify an email domain for your enterprise in Security Provisioning and Administration. This is a prerequisite to integrating an identity provider with Security Cloud Sign On. It's also required to enable enterprise administrators to reset users’ passwords or MFA settings in the claimed domain.

Claim and verify a domain

  • The DNS record that you create can be deleted after Security Provisioning and Administration has verified the domain.

  • You can currently verify a single domain with Security Provisioning and Administration. If you must verify multiple domains, open a case with Cisco Technical Assistance Center (Cisco TAC).

Before you begin

To complete this task, you should be able to create a DNS record on the registrar service for your domain.

The Domains tab lists domains that you've verified or are in the process of verifying. If you haven't claimed a domain, a + Add Domain button is shown instead.

Procedure

Step 1

Select the Domains tab.

Step 2

Click + Add domain.

Step 3

In the Add New Domain page, enter the domain name you want to claim and click Next.

The Verification page shows the name under Record Name, and the value under Value of a text record that you must create on your domain registrar.

Step 4

In a new browser tab, sign in to your domain name registrar service.

Step 5

Create a new TXT record with the specified Record name and Value provided by Security Provisioning and Administration.

Step 6

Save your changes and allow time for the DNS record to propagate.

Step 7

Return to the Add New Domain page and click Verify.

If the verification is unsuccessful try the following:

  • Wait a while longer for the DNS record to propagate.

  • Verify that the type, name, and value of the DNS record you created on your domain registrar matches the values that are generated by Security Provisioning and Administration.

What to do next

After you've verified your email domain, you can do the following: