Registrant email verification (ICANN contact validation)

Question

What is registrant contact verification (contact validation) and how will it be used?

Answer

Due to ICANN requirements and NIS2 directive, Openprovider is obliged to verify the validity of each e-mail address that is used in the owner contact details of any gTLD registration and specific ccTLDs. gTLDs include all extensions that are not country codes (ccTLDs): common generics like .com, .net and .travel, and all new gTLDs like .guru, .berlin and .app. The following ccTLDs will also require email verification:

  • Austria: .at, .co.at, .or.at
  • Denmark: .dk
  • Finland: .fi
  • France & Overseas Territories: .fr, .pm, .re, .tf, .wf, .yt
  • Germany: .de
  • Italy: .it and all corresponding 3rd level domains
  • The Netherlands: .nl, .amsterdam
  • Poland: .pl and all corresponding 3rd level domains

 

It is very important to complete e-mail validation, as refusing to do so leads to unavailability of your domain(s).

This article contains the following sections:

Triggers

There are a few triggers that will cause e-mail validation to start. Note that the following procedure only covers gTLDs and the mentioned ccTLDs.

  1. A new domain is registered / transferred in, and the domain uses an unverified e-mail address for the domain owner (registrant, domain holder)
  2. An existing domain is updated to a new owner, which has an unverified e-mail address
  3. An existing contact object, used as owner contact for one or more gTLD registrations, is updated with an unverified e-mail address
  4. Invalidated e-mail addresses: if information reaches Openprovider that a previously verified e-mail address is no longer valid, for example a complaint or a bounce on an e-mail that Openprovider sent to that address.

Unless one of the above events happens, existing e-mail addresses - addresses that are in use already - will not be subject to verification.

Verification process

If any of the above events occur, the verification process is started. That process contains the following steps:

  1. An initial e-mail is sent to the domain holder (This email can be customized. with resellers own company details or company style), In the email to click a link to confirm domains owners e-mail address.
  2. If after 7 days no confirmation is received, a second e-mail is sent to the domain holder, urging him to confirm his e-mail address.
  3. At the same moment, an e-mail is sent to the reseller of Openprovider to inform him about the fact that the e-mail address was not yet confirmed.
  4. If after another 7 days still no confirmation is received, the verification fails, any linked domains are suspended and the customer of Openprovider receives a notification about this.

As soon as an e-mail address is confirmed, it will be marked verified in our systems. As long as it is verified, no new verification is required. Theoretically a verification can last forever (until information reaches us that the e-mail address is no longer valid).


Note: As part of NIS2 directive, for ccTLDs (mentioned in the list above) registered before October 14th, email verification will still be required, but no suspensions will occur before January 15, 2025, to avoid disruptions. After this date, any domains with unverified email addresses will be suspended.
If there are any changes or extensions to this deadline, we will inform you at least 15 days in advance.

View verification status

The verification status of an e-mail address is easily visible in the Contact verification overview page in the Domain management menu in the Openprovider control panel. Re-starting verification or re-sending the verification e-mail can be done from this page by clicking on a green Re-send button in the E-mail address section if the page.

The verification status for a specific contact or domain is also visible in the domain details pages and the customer details pages.

Tip: You can even start a verification process before you register the first domain on this name! That way, registration is not interrupted by the verification process.

Domain suspension

If verification fails (after 14 days of no response), Openprovider must, according to ICANN contracts and NIS2 directive, suspend any domain registration that uses that e-mail address in the owner contact. Suspending a domain means that Openprovider changes the nameservers of a domain name, causing the domain to be unresolvable. Website nor e-mail nor other related services will be functional anymore.

Failing to confirm an e-mail address might thus lead to suspension of many more domains. There are two ways of rendering the domain(s) active again:

  1. Complete the verification process. The link in the e-mail is still valid. If the e-mail was not received and the e-mail address still is functional, the e-mail can be sent again from the domain details page.
  2. Or change the e-mail address to another one. If that e-mail address was already verified, all domain names will be unsuspended immediately. If that e-mail address was not verified, domains will be unsuspended as soon as the new verification process is completed.

Status of a suspended domain

A suspended domain will be put to a special set of nameservers in the whois. In other words: the domain does not resolve, it is unavailable. But the domain is still registered! That means that you can update the domain, renew it, transfer it or even delete it. As long as the domain is registered, registration fees are applicable.

E-mail customization

For general information about e-mail customization (also called "white labeling" or "personalization"), Openprovider's blog post is a must-read.

Resellers can customize the e-mails that Openprovider sends to the end user: Resellers can use their own data in the following data fields; this functionality is multi-language and works based on tags, allowing resellers to create different templates for different (groups of) customers.

  • company name
  • sender e-mail address
  • e-mail subject
  • confirmation link
  • full body text

Those customization features can be found in the menu Account > Settings.

Technical details about the use of their own confirmation link (verification page) can be found on our dedicated knowledge base page.

Duplicate verification

In some cases, an e-mail address must be verified multiple times. For example, if a reseller register a .com domain at another registrar and resellers .net domains at Openprovider, both registrars will be required to verify the e-mail address. It is important that both verifications are completed, otherwise the other registrar might suspend your .com domain or Openprovider might suspend your .net domain.

Even within Openprovider multiple verifications might be required, as there are a few gTLDs and ccTLDs that Openprovider does not handle yet via its own registry account. If you have any doubts about the legitimacy of an email, contact our support department.

Was this article helpful?
Additional questions? Submit a request