I run a small SaaS company with about 75 employees, and I'm trying to figure out how to better manage the security, auditing, and notifications around my DNS registrars and records. Although my company is SOC 2 and ISO 27x certified, the controls around DNS records feel a bit excessive at times. I've spoken to some of my peers, and most companies our size require more sophisticated tools than the basic offerings like GoDaddy or Namecheap.
I'm looking for features such as SSO with Google Workspace, SAML integration, basic ACL controls (like limiting certain developers to add sub-domains), and a notification system to alert us about actions taken (like a developer creating a sub-domain or a domain nearing expiration).
I've checked out options like MarkMonitor and CSC, but they're really expensive and lack integration with tools like Slack. Is there a more affordable option for mid-market companies? What tools are you guys using, and if you're not satisfied with them, what improvements would you like to see?
3 Answers
Regardless of the solution you choose, it's crucial to maintain strict controls. Always manage DNS changes through an established change management process. Mistakes in DNS can lead to significant issues, so going through an approval process is essential.
AWS Route 53 is another option worth considering. It has a lot of features that may help with security and management. You can set up metrics and alerts, and it integrates well with other AWS services if you’re already using them.
Have you checked out Cloudflare? They offer a free account, and I've found it pretty handy for managing DNS records. You might need to transfer all your domains to their platform, but it allows you to set permissions and limits for users on your account, which can help with the ACL controls you mentioned.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures