This article explains how to validate a domain in SMARTFENSE by creating a TXT record in your DNS settings. It also details how to correctly fill in the Name / Host field so that the platform can verify domain ownership.
This validation is required and must be done before deploying any of our phishing report buttons or the native integration with the Microsoft button.
To use a domain in SMARTFENSE, it is first necessary to confirm that the domain belongs to your organization. The validation is done by adding a TXT record in the domain's DNS configuration.
In the section: Settings > Organization > Corporate Domains, press the New Domain button and enter the domain to validate.
In this example, the domain is: mydomain.com
Press the save button and you will see the domain in the Unvalidated status.
Follow the steps detailed below to create the requested TXT record in your DNS and validate the domain.
Information to be entered
A record must be created with the following data:
- Type: TXT
- Name / Host: mydomain.com.
- Value / Content: smartfense-domain-verification=llhePGk_2YZxnFEhS2UPgfvNRvHqHw9iCHi85KYI-O5I4exl
- TTL: keep the default value, for example 3600 or Automatic
| Note: the text for the Value / Content is obtained from the platform by pressing the Validate button. It will be unique and variable for each domain you want to validate. |
Important about the Name / Host field
This is the most important point of the process since each DNS provider may display this field differently.
The record must be created on the root domain and not on a subdomain. Depending on the DNS provider used, the Name / Host field can be filled in one of the following ways:
mydomain.com.
@
empty
The correct option will depend on the provider's panel. The important thing is that the record is associated with the root domain mydomain.com.
Example of a correct record
mydomain.com. 3600 IN TXT "smartfense-domain-verification=llhePGk_2YZxnFEhS2UPgfvNRvHqHw9iCHi85KYI-O5I4exl"
Example of an incorrect record
smartfense-validation.mydomain.com. 3600 IN TXT "smartfense-domain-verification=llhePGk_2YZxnFEhS2UPgfvNRvHqHw9iCHi85KYI-O5I4exl"
This example is incorrect because the record was created on a subdomain. SMARTFENSE needs to find the TXT record on the main domain to confirm ownership.
Steps to validate the domain
Access the DNS provider's administration panel for the domain mydomain.com
This access is usually done from the registrar or provider where the domain's DNS zone is managed.Find the DNS configuration section.
Depending on the provider, this section may appear under names like Manage DNS, Advanced DNS, DNS Settings, or similar.Create a new record of type TXT.
Within the list of DNS records, choose the option to add a new record and select the type TXT.-
Fill in the Name / Host field with the value corresponding to the root domain.
Depending on the provider, this field may require:mydomain.com.
@
leave empty
If this field is filled in incorrectly, the record may be associated with a subdomain and the validation will fail.
- Fill in the Value / Content field with the following text: smartfense-domain-verification=llhePGk_2YZxnFEhS2UPgfvNRvHqHw9iCHi85KYI-O5I4exl
Keep the TTL at the default value.
In most cases, it can be left at 3600 or Automatic.Save the new DNS record.
The button may be shown as Save, Add Record, Guardar, or a similar option depending on the provider used.Wait for the change to propagate.
Once the record is saved, the change may take some time to reflect. In some cases, the update is immediate. In others, it may take several hours.Return to SMARTFENSE and click Validate.
The platform will look for the TXT record configured on mydomain.com to confirm domain ownership.Retry validation later if the record is still not detected.
If SMARTFENSE does not find the record immediately, it is recommended to wait a few hours and try again. In some cases, propagation may take up to 24 hours.
Once the domain validation is completed, its status will change to Validated.
💡 Best practices
Verify that the TXT record is created on the root domain and not on a subdomain.
Keep the TTL at its default value to avoid unnecessary configurations.
Wait for DNS propagation before retrying validation in SMARTFENSE.
Confirm that the TXT record value is copied completely and without modifications.