Featured Image

Internet Domain and DNS Inspector

on Mar 04, 2018 in Systems

Managing at scale

Managing access, ownership, privacy, and security of domain names are a constant chore, but the problem is compounded for MSPs (Managed Service Providers). One or two domains might not be too difficult to manage but keeping track of everything for a couple hundred domains or more is a huge full-time job.

Manually updating records for WHOIS information, tracking registrar logins, and documenting changes to DNS in your CMDB (Configuration Management Database) is a good start, but can be a recipe for disaster if someone ever forgets to write things down (an issue that is all too common). The effort required becomes significantly greater if your customers are under regulatory compliance measures like HIPAA (Health Insurance Portability and Accountability Act) or have security policies with strict enforcement of NIST (National Institute of Standards & Technology) guidelines. 

That's where Liongard's Roar can help. Roar’s Internet Domain and DNS Inspector enables MSPs to take control of their customers’ domains and keep them properly secured by automating the tracking of public DNS records, WHOIS data, and other critical domain name related information for possible drift and expirations. The data is continuously assessed to security and best practice standards and quickly shows deficiencies in domain security. Once identified, any issues found are sent to your PSA (Professional Services Automation) where they can be assigned to staff for remediation. 

  • So, if a client has 20 domains that aren’t configured with SPF records, Roar will let you know and give you guidance on how to fix the problem.
  • If a WHOIS record is showing your biggest customer’s CTO’s personal cell phone number to the whole world, Roar makes it easy to find out.
  • If a domain name is about to expire, Roar will let you know well before it happens, so you have time to renew.
  • If someone changes an A record, Roar will identify and record any and all changes made in a timeline, allowing you to rewind, verify them, and investigate if necessary.
  • Once you fix any findings, Roar takes it a step further, self-validates the change, and closes (ticket self-heal), or reopens the ticket if the fix was unsuccessful.

Inspection Data

  • Internet Domain Details
    • Domain Name
    • Domain Registrar
    • Domain Created On
    • Domain Updated On
    • Domain Expired On
    • Domain Registrant Information
    • Domain Admin Information
    • Domain Tech Information
  • DNS
    • DNS Hosting Vendor
    • DNS Hosting Region
    • Domain Name Servers
    • DNS A Records
    • DNS Protection (DNSSEC) - If exists, True or False
  • Website
    • Website Detected - Yes or No
    • Website URL
    • Website Title
    • Website Hosting
    • Website Region
    • Website TLS/SSL - If exists, True or False
  • Email
    • Email Detected - If a service is detected
    • Email MX Mail Record
    • Email Hosting - Name of the provider
    • Email Hosting Region - Where the mail server resides
    • Approved Email Senders (SPF) - If exists, will show the record(s)
    • Domain-based Message Auth, Reporting & Conformance (DMARC) - If exists, True or False
  • DNS
    • Zone details including A, NS, MX, TXT Records
    • Recon on subdomains that can be reached publicly

Roar’s Internet Domain and DNS Inspector is but one of a handful of system integrations. For instance, with Roar’s TLS/SSL Inspector, you can further audit a customer’s website digital certificates for weak encryption algorithms and expirations. With the Identity Monitoring Inspector, Roar can check whether the administrative and technical contacts have ever been compromised in a breach.

Unifying domain, DNS, TLS/SSL, and Identity Monitoring data into a central platform, along with other cloud, network, and on-premise system inspectors gives MSPs the unified visibility needed to manage IT at scale efficiently and profitably.

Get the latest insights from Liongard