# Domain verification

Domain verification confirms that you own or control a domain before Aikido allows scans or integrations that reference it.

{% hint style="danger" %}
Only verify domains that belong to your organization. Verification grants permission to scan and analyze assets associated with that domain.
{% endhint %}

This step prevents misuse of scanning features against domains you do not own and protects both your organization and others from malicious or accidental scans.

<div data-with-frame="true"><figure><img src="/files/O4rz05NtZR0y0N4WWXaO" alt=""><figcaption></figcaption></figure></div>

## Verification methods

You can verify a domain using one of the following methods. All methods prove control over DNS or hosting for the domain.

### Option 1: CNAME record

You add a CNAME record to your domain’s DNS configuration.

* Aikido provides a unique CNAME value
* You create the record in your DNS provider
* Aikido checks that the record resolves correctly

### Option 2: TXT record

You add a TXT record to your domain’s DNS configuration.

* Aikido provides a unique TXT value
* You add the record to your DNS provider
* Aikido verifies the presence of the record

### Option 3: TXT file on the domain (AI Pentest only)

{% hint style="warning" %}
The TXT file is accessed from the [Code and Container scanning IPs](/code-scanning/miscellaneous/allowing-ip-addresses-for-code-container-scanning.md). Make sure these IPs are allowlisted, or domain verification will fail.
{% endhint %}

You upload a TXT file to a root path on your domain.

* Aikido provides a filename and verification token
* You host the file at the required URL
* Aikido confirms the file is publicly accessible from the [Allowing IP Addresses for Code and Container Scanning](/code-scanning/miscellaneous/allowing-ip-addresses-for-code-container-scanning.md), make sure to add these for validation to succeed

This option is useful when you do not control DNS but can deploy files to the domain.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.aikido.dev/miscellaneous-info/domain-verification.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.