Sean Killeen

A mind at work. Microsoft MVP and passionate .NET dev. Trying to be all the human I can be in the time I have. (he/him)

How to: Delegate a NameCheap Domain Name

1 minute read | Suggest an edit | Issue? Question?

Problem

When building a web site for a customer, you need access to domain name properties to change things such as DNS settings.

However, if a customer provides you with access to their domain by sharing their login, they could put themselves at risk, too. Most customers don’t want to trust an IT professional with the keys to their branding, particularly if the relationship is new or if they have several domains with one account.

Solution: Domain Name Delegation

Domain name delegation allows your customer to give you access to their domain name for certain actions, without needing to grant you access to their account or full control over the domain.

Configuring Domain Delegation at NameCheap

I’m a big fan of http://NameCheap.com for domain hosting. They make domain delegation pretty straightforward.

Your client can do the following:

  • Sign up for NameCheap and buy their domain.
  • Go into their domain’s settings.
  • On the left-hand side, click “Grant modification rights”:

A screenshot of the location of the 'grant modification rights' screen

  • Enter their password and your username:

A screenshot of granting access to our username

  • Select all for all rights or (only the rights they’re comfortable with):

A screenshot of the rights selection section

  • Save the settings:

A screenshot of the 'grant access' button

The next time you sign in, you’ll see the domain name in your domain name list, likely with a lock next to it to indicate that you’ve only been granted certain rights:

A screenshot of the delegated domain

To Recap: Why we’re doing this

  • Doesn’t Expose other customer domains: if a customer has 20 domains under their account, they can grant you rights to just the one they’re interested in.
  • No shared logins: Both parties are more secure since there’s no need to share passwords.
  • Power resides with the customer: They can remove your rights entirely at any time they desire or share with multiple people. This puts the power/control in their hands which is usually a good thing.
  • You can both use two-factor authentication: Because passwords aren’t shared, two-factor authentication (one of the more secure approaches to logins that uses “something you know”, e.g. a password, and something you have, e.g. your cell phone to receive a text) is now possible. This greatly reduces potential for a security breach.

Happy domaining!

Updated:

Leave a comment

You may also enjoy