Domain and DNS Security
You need to know your domains are as secure as possible. DNSimple provides everything you need to do just that. Multi-factor authentication, multi-user account security, domain access control, and other security enforcement tools safeguard your domains every step of the way

Domain Security
DNSimple’s services create all the DNS configuration needed to secure your domains - without all the extra work and complications.
SSL certificates
Let’s Encrypt SSL certificates keep your sensitive information secure. Our API fully automates request and renewal of these certificates.
Domain auto-renewal
Don’t worry about when your domains expire or how to renew them. This feature ensures your domain is renewed before it expires.
CAA record
CAA records ensure only the Certificate Authorities you use are allowed to issue SSL certificates for your domains. This feature protects your domain from mis-issuance.
HTTPS redirector
Secures your site and ensures no one can access communication to or from your website. Available on the professional plan and higher.
Transfer locks
Automated domain transfer locks prevent your domain from being unintentionally or unexpectedly transferred.
Whois privacy
This feature keeps contact information private for your domains. It replaces the public information you provide with an anonymous proxy identity in the public WHOIS database.
Domain access control
Specify different roles for your team members on a per-domain basis.
Single Sign-on
Use Okta or Google as your Identity Provider to provision account access for all your team members.
Network Security
Network security is critical. We make sure your domains stay safe with features included on all plans.

Domain Access Control
Specify different roles for your team members on a per-domain basis.
- Zone operators can only access and maintain DNS records.
- Domain managers access all functionality, including domain registration and name servers.
- Account admin have full access to all domains and full account management.

DNS Security
We make securing your DNS simple with Domain Name Security Extensions (DNSSEC) and automatic key rotation.
DNSSEC
Use the same technology for your domains that financial institutions use to protect your data. DNSSEC prevents attackers from spoofing your IP address and redirecting your users to malicious sites.
Automatic key rotation
Further secure your domains with DNSimple’s DNSSEC rotation. We’ll automatically rotate DS records for domains registered through DNSimple.
Account Security
Protect your domains and your information with DNSimple’s account security features.
Multi-factor authentication
Protect your account from theft and fraud. Enable multi-factor authentication (MFA) to add an extra layer of security at login. We support one-time password authentication apps, external hardware keys (FIDO2, WebAuthn compatible), and platform authenticators like Windows Hello, Apple Touch ID, Face ID, and Passkeys.
Enforce Multi-Factor authentication for your team
Don’t take risks with your account access. Enforcing MFA for your team ensures all account members have an extra layer of protection against unwanted account access. Available on the professional plan and higher.
Single Sign-on
Use Okta or Google as your Identity Provider to provision account access for all your team members.