Adding company domains

You can add your company's domains and verify them through the domain host (usually with the domain name registrar). To verify ownership of the specified domains, you need to add the platform-generated control record to your primary domain registrar's DNS records.

The control record doesn't affect how your website or email works.

After confirming the domain, you can add all users with email addresses from this domain to phishing campaigns without sending them invitations.

To add company domains:

In the web interface, select the Company settings section → Company domains.
Click the Add domains button.
The Add domain window opens.
In the Company domain entry field, enter the domain name.
The platform supports Latin or Cyrillic characters for names.
Please select at least one domain use option by checking the boxes next to it:
- Add employees to phishing campaigns — allows you to carry out phishing attacks without asking users for consent to training.
- Send Phishing Emails — allows you to use your company's domains in the sender addresses of phishing emails.
Click the Add button.
This domain will be displayed in the domain chart.
Copy the text value in the Control record column using the button and add it to your domain name registrar's DNS TXT record.
Wait for the check to be completed. You can see the check status in the domain chart.
Checking a control record may take from 30 minutes to 3 days.

You can use the following console commands to check whether the control record you generated was added to the DNS records of your primary domain:
- On Linux: dig txt <name of your second-level domain>.
  For example, dig txt example-domain.com
- On Windows: nslookup -q=TXT <name of your second-level domain>.
  For example, nslookup -q=TXT example-domain.com
If the server response includes your control record asap-site-verification-<identifier>, the check succeeded and the record was added to the domain's DNS records.

If after three days the platform has failed to verify the domain, you can relaunch verification using the icon in the Verification status column or delete the domain via the icon.
Add a control record to your domain registrar:
1. Log in to your domain registrar's control panel.
2. Add DNS record:
  - Select the TXT record type.
  - For the (Host) name, enter "_asap".
  - As the value, insert the text value from the Control record column.
3. Save the recording.
Add an SPF record to your domain registrar:
1. Log in to your domain registrar's control panel.
2. Add DNS record:
  - Select the TXT record type.
  - For the (Host) name, enter "@" or leave the name blank if allowed.
  - As the value, insert the text value from the SPF Record column.
3. Save the recording.
Add a DKIM record to your domain registrar:
1. Log in to your domain registrar's control panel.
2. Add DNS record:
  - Select the TXT record type.
  - For the (Host) name, enter "default._domainkey".
  - As the value, insert the text value from the DKIM Record column.
3. Save the recording.
Add a DMARC record to your domain registrar:
1. Log in to your domain registrar's control panel.
2. Add DNS record:
  - Select the TXT record type.
  - For the (Host) name, enter "DMARC".
  - For the value, insert the text value from the DMARC Record column.
3. Save the recording.
Add an A record to your domain registrar:
1. Log in to your domain registrar's control panel.
2. Add DNS record:
  - Select record type A .
  - For the (Host) name, enter "@".
  - For the value, enter the IP address that the domain or subdomain will point to.
3. Save the recording.

The domain is now added. You can add users from this domain to phishing campaigns without first obtaining their consent via a training invite.

It may take anywhere from a few minutes to a few hours for DNS record changes to take effect. Use online DNS record checking tools to ensure that your SPF, DKIM, and DMARC records have been added correctly.

To the top