Chose your color

Frequently visited

Frequently asked questions

  • I am looking for a domain name registrant. Where can I look it up?

    The Whois is an easy-to-use tool for checking the availability of a .nl domain name. If the domain name is already taken, you can see who has registered it.

    On the page looking up a domain name you will find more information about what a domain name is, how the Whois works and how the privacy of personal data is protected. Alternatively, you can go straight to look for a domain name via the Whois.

  • I would like to transfer my domain name to another registrar. What is the procedure?

    To get your domain name transferred, you need the token (unique ID number) for your domain name. Your existing registrar has the token and is obliged to give it to you within five days, if you ask for it. The procedure for changing your registrar is described on the page transferring your domain name.

  • The details registered about me/my company are incorrect or out of date. How can I get them updated?

    To update the contact details associated with your domain name, you need to contact your registrar. Read more about updating contact details.

  • Why is my domain name in quarantine?

    When a domain name is cancelled, we aren't told the reason, so we can't tell you. You'll need to ask your registrar. The advantage of quarantine is that, if a name's cancelled by mistake, you can always get it back.

    One common reason is that the contract between you and your registrar says you've got to renew the registration every year. If you haven't set up automatic renewal and you don't renew manually, the registration will expire.

  • Ik heb een klacht over mijn provider/registrar. Kan ik daarvoor bij SIDN terecht?

    Wanneer je een klacht hebt over of een geschil met je registrar dan zijn er verschillende mogelijkheden om tot een oplossing te komen. Hierover lees je meer op pagina klacht over registrar. SIDN heeft geen formele klachtenprocedure voor het behandelen van een klacht over jouw registrar.

  • What conditions do I have to meet as a registrar?

    Would you like to be able to register domain names for customers or for your own organisation by dealing directly with SIDN? If so, you can become a .nl registrar. Read more about the conditions and how to apply for registrar status on the page becoming a registrar.

More frequently asked questions

Colleges and universities losing oversight of their domain name portfolios

Pandemic has led to huge registration growth and fragmentation

Young woman taking notes while looking at computer screen and taking math class.

Organisations in the Netherlands often ask us to scan our database and tell them exactly what domain names they have, and which registrars they're registered through. Mergers, takeovers and reorganisations can lead to domain names having no 'owner' within an organisation, even though there are still applications and e-mail addresses linked to them. Resulting in administrative chaos and security risks. In the past, such problems occurred mainly at multinationals with numerous subsidiaries and brands. But universities and colleges can struggle to keep an overview as well. And the situation has become a lot worse since the coronavirus pandemic began. So what's going on? And why should security professionals be thinking about this issue now?

Accelerated digitisation

Over the last two years, many universities and colleges have been digitising faster than ever. There's been a particular boom in the use of cloud applications. As one university puts it, the IAAS/PAAS landscape has exploded. With face-to-face teaching halted or reduced, countless new applications and websites have been launched. Many with their own domain names, often registered through a supplier for convenience. And not by the central IT department, but by the team behind the initiative. Universities and colleges where that's been happening now find that they've lost oversight of their domain name portfolios and applications. Regaining that oversight is a task no security team should delay, because of the potential for vulnerabilities going unnoticed. 

Young woman taking notes while looking at computer screen and taking math class.

Decentralised structures

Universities and colleges are at particular risk because of their traditionally decentralised structure and culture. Faculties often operate independently, with relatively little centralised administration. Where a centrally managed procurement process does exist, it's often so complex that people bypass it. Consequently, many initiatives, departments and faculties have websites created without the involvement of an IT or security professional. Plus matching domain names registered by people frequently unaware of the precautions they should take. The resulting domain name landscape is confusing and fraught with risk.

Man is looking at a business structure concept that he has drawn on a blackboard.

A variety of risks

Loss of domain name portfolio oversight brings a variety of risks, ranging from name confusion and image damage to vulnerabilities that could be exploited by cybercriminals. A recent example involves a domain name registered for advertising vacancies at a university (werkenbij<..>). The name used to point to the university's homepage, but an administrative error meant that the registration expired. The domain name was then snapped up by crooks who used it for a fake webshop selling branded trainers at knockdown prices. Because the domain name still featured in links on university's homepage and still appeared to belong to the university, it retained its Google ranking, enabling the crooks to use it for a spam campaign. So the university's reputation was significantly dented.

E-mail  needs attention too

Something that's often overlooked is that domain name abuse doesn't always involve a website. Many university domain names have e-mail addresses linked to them, which staff and students use to log on to applications. If 2FA isn't used, such addresses can be exploited by hackers to access systems and, for example, instal ransomware.

BrandGuard and the Domain Name Portfolio Checker

Against that background, more and more universities and colleges are opting to continuously monitor domain name registrations with SIDN BrandGuard. BrandGuard flags up any registrations that resemble or include the institution's name. There's also the option of making an inventory of all the domain names registered to the organisation, using the Domain Name Portfolio Checker (DPC). Preventive scanning can save a lot of trouble.  

Want to know more?

Feel free to get in touch for more information about domain names, and use the hashtag #SIDNMerkbewaking to get the latest news.

Contact person:

Peter Rotgans

Peter Rotgans

Specialist online brand monitoring

Please contact me if you have any questions.