Viewable by the world

Overview

LBNL owned domain properly must use the LBNL IT Division registrar service. This includes domains that are not lbl.gov but where the Lab controls a signifiant stake in the project.  Please visit the following page to request a non-lbl.gov domain name: https://it.lbl.gov/service/networking/dns/support-for-non-lbl-gov-domain-names/

The goal of this requirement is to avoid LBNL domain properties from being owned by individually controlled registrar accounts. There are multiple reasons for this requirement.

  • Provides preservation of Lab domain ownership through time and turnover
  • Enable Lab Cyber Security the ability to take action if the domain is compromised 
  • Simplifies and streamlines the domain renewal process
  • Facilitates a complete view of Lab owned domain property 

Master DNS

The master DNS may be changed to a non IT division service.  However, in the event of a Cyber Security incident, the master DNS may be changed by IT staff to enable control of domain resolution. 

Exceptions

There are two exceptions to this policy. 

  1. If the domain is under the control of another DOE, UC, or a collaborating institution as part of their respective institutional registrar service. 
  2. AWS Route 53 is allowed if the AWS account is part of the LBL AWS organizational configuration 



 




  • No labels