Yes, you can register a ".is" domain!

For further information see Domain Registration in ISNIC's rules.

If you have your own nameservers, you must have configured the domain and the nameservers must be registered with ISNIC. If you do not have any nameservers yet, you can park your domain with ISNIC until you have decided on where to host your domain.

See domain requirements and nameserver requirements.

You must also have available the NIC-handles of the domain's contacts, and you yourself must be logged in via "Contacts->Login".

If contact handles are unavailable, you must first register the contacts (and/or yourself) via "Contacts->Register" on the left.

Once logged in, proceed to the registration page ("Domains->Register") and follow the instructions. Your application will be queued, pending payment of registration fees.

All ".is" domain's are registered in the ISNIC domain registry and their registration information is available via the ISNIC web. However, the registration WHOIS lookup is rate-limited and does not include pending domains.

If you want to do this in a program use EPP check:domain or RDAP domain availability check. These lookups are rate-limited at 7200 queries per 30 min.

Usually, a domain's adminstrative contact is simply the registrant. If the registrant wants someone else to have full change-control over the domain, a third party can be appointed administrative contact.

Please note that the admin contact has full, web-based control of the domain, including the ability to transfer the domain to a new registrant. It is the registrants responsibility to ensure that proper contracts exist between a third-party administrative contact and the registrant.

Domains can have up to four different contacts (NIC-Handles) in addition to the registrant. Each contact serves a different role and holds different change-authority over the domain. The contacts and the registrant use their NIC-Handles to log into the ISNIC web to modify their own, and their domain's registration.

A contact can also have a representative that manages the registration on their behalf.

Note that each contact can change their own registration information, but only the domain's registrant and administrative contact can change the domain's contacts.

1. The Registrant (R) has full change-control over the domain, if the registrant contact has been activated (see How do I activate a contact object's NIC-handle?). The registrant can change all aspects of the domain's registration, including transferring the domain to a new registrant and deleting the domain.
2. The Administrative Contact (AC) has full change-control over the domain and exercises this control on behalf of the registrant. The AC can change all aspects of the domain's registration, including requesting the transfer of the domain to a new registrant or deletion of the domain. Transfers and deletes require registrant approval if the registrant is an active contact. If the registrant decides to delegate all management of the domain to a third-party, that party should then be registered as the domain's administrative contact (see What is the role of the domain's administrative contact?). The AC can withdraw their services and will be replaced with another contact related to the domain or a contact.
3. The Technical Contact (TC) handles the technical aspects of domain management, it's DNS hosting, web hosting etc. The TC is most often with the domain's network provider. The registrant or the administrative contact can substitute the TC for a new one. The TC can withdraw their services (resign) and will be replaced with another contact related to the domain or a contact.
4. The Billing Contact (BC) is the recipient of the domain's billing information. The domain's invoices are addressed to the BC. Most often the BC is the registrant himself. The domain's R and AC must make sure that the appropriate party is registered as the domain's BC at all times. Only the R and AC can substitute the BC for a new one. The BC can withdraw their services (resign) and will be replaced with another contact related to the domain or a contact. Bills are never re-issued to the new BC. Upon request, a receipt will be issued to the new BC after the domain's fees have been paid.
5. The Zone contact (ZC) is the technical contact for the domain's nameservers. The ZC owns the domain's primary nameserver and is responsible for the domain's compliance with the .is technical delegation requirements. The ZC must be willing and able to configure the nameservers according to these requirements. The ZC is automatically updated when the domain is redelegated to a new set of nameservers.
6. Representative (U) for the registrant is a contact that manages the contact registration for the contact.

The same party can perform all these functions, i.e. the same NIC handle can be registered as the domain's R, AC, TC, BC, and even ZC. However, if they are not the same, the set of available operations depends on who is logged in to the ISNIC portal according to the following table:

Operations on domains

a) AC, BC, and TC can withdraw from a domain (resign). The contact will be replaced with another contact related to the domain or a contact.
b) ZC of domains hosted with a registered DNS hosting provider can redelegate and manage DS records.
c) TC and BC can request registrant transfers and deletions, R or TC must approve. AC can do registrant transfers and deletions if R is not an active contact.
d) All DNSP contacts can also renew the domain.

Operations on contacts

The annual renewal fee is €36.90. The first year's fee (the registration fee) must be prepaid before registration can proceed. See the domain charges page.

ISNIC does not provide website nor email hosting service. DNS hosting is often provided by website and email hosting providers. All your services can be hosted at different providers.

ISNIC DNS Hosting is for those that only need basic DNS setup for their domain.

Step 1

Login to your account.

Step 2

Go to My page and click on the shopping cart icon under the column Renew for the domain you want to pay for.

Step 3

Choose a billing method and click on Purchase. Enter your card information on the billing site and renew your domain.

The registrant, admin- and billing contacts can register domains for automatic payments on the subscriptions page.

When domains are registered for automatic renewal, card will be charged for the annual renewal fee 45 days prior to the expiry date.

Registering your domain to self renewal can be done at "My page". There you can click on the button for registering a domain for self renewal, or to remove self renewal from it.

It is important to keep information in WHOIS correct for domains which are automatically renewed. Contact e-mail addresses are particularly important to keep current as receipts for those domains are only sent in e-mail.

If a domain remains unpaid on it's expiration date, ISNIC informs the domain's billing contact (and the domain's administrative contact) that the domain is about to be deactivated (put on hold). At around 13:00 UTC the day after the expiration date, the domain is deactivated and removed from the ".is" zone.

The domain now enters a 30 day grace-period where the domain remains registered but inactive. During this period the registrant can reactivate the domain by paying the renewal fee. No further communications/warnings are issued by ISNIC during this period. If the domain fee has still not been paid after 30 days, the domain is deleted at around 13:00 on the following day and made available for re-registration.

ISNIC can not provide definite information on when (exact date) a expired domain will be released for registration again. A ".is" domain that is not renewed by it's expiration date is put on hold (closed) at around 13:00 UTC the day after its expiration date.

A domain on hold is not available for registration. The registrant now has 30 days to remit the registration fee, and if the registration fee is recieved by ISNIC the domain is reactivated. Please note that the registrant can explicitly delete the domain any time during these 30 days, making the domain available for registration immediately.

If the domain registration fee remains unpaid after 30 days, ISNIC deletes the domain at around 13:00 UTC the following day, making it available for reregistration.

To change payment cards for domains in autocharge you start by adding new card here.

Step 1

Login as the registrant, admin or billing contact.

Step 2

Add new card here

Step 3

If you are only updating one domain then you can skip this step

Now go to my page again, then go to Payments and Creditcards. Finally go to Replace card, choose the old card and the new card in the drop down lists and replace all autocharged on the old card.

You can also add domains to autocharge in the domain list on my page if it is not already marked as autocharge.

Modifications are web-based. You must begin by logging in to the ISNIC web using your NIC-handle and password and select "My page". You will then get a list of domains and nameservers for which you are registered and over which you have change-control. Select the domain/nameserver you wish to modify and follow the instructions. Use "My Settings" for your NIC-handle. In cases where the NIC-handle is also a Registrant, changes will also be visible in the Whois form in relation to the Registrant of those domains.

A user can change the name registered on his account through "My settings".

User's names registered using Icelandic National Identity Numbers ("Kennitala") are automatically updated if a change is made in the National Registry (both for individuals and for corporations).

User can resign from being administrative, billing, or technical contact for a domain. Resigned contact will be replaced with another contact related to the domain or a contact.

Step 1

Login to the appropriate NIC-handle on isnic.is.

Step 2

Go to Resign as contact page and click on the boxes with icon to resign as desired roles.

Click on Submit.

Note: The instructions do not apply if you are the registrant contact for a domain. To transfer a domain, see How do I transfer a domain name from one registrant to another?

By default, most of the personal information on individuals (registrants and contacts) is withheld from publication. Note that the country is always published. You can decide to explicitly publish the rest of your information by going to "My settings" and toggle "Publish in WHOIS" to "Yes". Please remember that this only applies to individuals.
Note the circumstance's in Release of hidden Registration Data from ISNIC's Whois

Contacts are automatically removed if not used. But a contact can be removed if it is not used by a domain or a host. After the contact has been marked expired it will eventually be deleted. After a contact has been marked expired it will immediately be removed from ISNIC's public whois database. But if the contact logs in before it is deleted the contact will be reactivated. See the button Delete contact on "My Settings".

The domains zone contact is the first (master) nameserver's technical contact. It is automatically modified, when the domain is redelegated to a new set of nameservers. The zone contact can thus only be changed by changing the technical contact of the domains current nameserver as registered with ISNIC, or by redelegating the domain to a different set of nameservers.

A domain’s registrant, admin-, and technical contacts can point domains to a host by changing the domain’s nameservers. Note that the domain must already be setup on the nameservers.

Step 1

Login to the appropriate NIC-handle on isnic.is.

Step 2

Go to My page and select your domain in the domain table. There you click on Redelegate under Nameservers.

Step 3

Select Nameservers. Type in the nameservers your hosting provider has set your domain up on, or choose the appropriate DNS hosting provider in the drop-down list of registered DNS hosting providers at ISNIC and click on Submit.

Note that you can only move your domain to a new set of nameservers if the domain has already been set up on the new nameservers according the ISNIC's technical requirements. Please contact your prospective DNS provider (the operator of the new nameservers) if you experience problems/errors when trying to redelegate your domain. Please do not contact ISNIC in these cases as we can not modify your domain's configuration with your DNS provider.

A competent DNS service provider will understand these basic requirements and will not have problems setting up your domains, or explaining /to you how you can use their systems to host .is domains according to these requirements.

For every domain there are 3 contacts, a long with the registrant and zone contact: Administrative contact, Billing contact and Technical contact. Each contact has a different role and authority, as displayed here. The Registrant and the Administrative contact of a domain can change a domain’s contacts.

Step 1

Login to the registrant's or the admin contact's NIC-handle on isnic.is.

Step 2

Go to My page, click on Domain and select Change contacts from the drop-down list.

Step 3

Select the domain/s you want to change contacts for and type in the NIC-handle/s in appropriate columns, depending on which contacts you want to change. If the new contact does not have a valid NIC-handle at ISNIC, they must first register a contact and obtain a NIC-handle. Click on Submit to save your changes. The contacts will change immediately.

DNSSEC is an extension to the DNS system which makes it possible to sign DNS records with a key (DNSKEY). Resolvers can verify that the authenticity of the responses. DNSSEC is defined in RFC4033 .

First, the records in your domain have to be signed. For this you can use extensions to popular DNS software such as BIND or 3rd party solutions.

Once the records have been signed and the signatures published in the zone, the DS records for the keys have to be submitted to ISNIC for inclusion in the ".is" zone. To do that, you go to Edit DS records, select the domain from the list, and click "Edit DS records".

There you can queue up changes by clicking the "Add DS record" button or the icon to remove DS records. When all removals and creations of DS records have been prepared you need to press the "Commit changes" button.

All nameservers should be set up to validate their answers before giving them to their users. To test if your nameservers (i.e. the ones you are using to navigate the net) are validating try clicking on the following links:

• internet.nl
• dnssec-or-not.com
• dnssec.vs.uni-due.de

Special care must be taken when modifying delegation records of a DNSSEC signed domain. DS records that are published in the .is zone point to DNSKEY records in the signed domain, and if they are missing, validating resolvers will fail to resolve names in the domain.

To safely modify the delegation records of a DNSSEC signed domain, please follow these steps (we assume no access to the private key used to sign the zone. If there is access to the private key, it can simply be moved to the new nameservers along with the domain and be used to continue signing the zone):

1. Transfer all domain records (then zone) from the old nameservers to the new nameserver, including DNSKEY records and sign it with the new key.
2. Copy the new DNSKEY records to the old nameserver.
3. Add a DS record with ISNIC correspondig to new KSK.
4. Wait for at least 24 hours. This ensures all resolvers see the new DNSKEY and DS records.
5. Re-delegate the domain to the new nameservers.
6. After 24 hours delete the domain from the old nameservers and remove the old DNSKEY records from the new nameservers. Also remove old DS records from ISNIC.

Note: The "24 hour" recommendation assumes common TTL (time-to-live) settings. If you have configured longer TTLs for your zone, you may need to wait longer.

It is important that nameservers are registered with ISNIC by the nameserver operator/owner or their technical representative. The nameserver's technical contact becomes the zone contact for all ".is" domains delegated to the nameserver and therefore must be whoever administers the nameserver. ISNIC contacts the domain's zone contact in case of technical difficulties with the nameservers and this contact must have proper access to the nameserver and be able to fix DNS-technical problems.

To register a nameserver you must have available the nameserver's intended technical contact handle (nic-handle). If that is not available the server administrator must begin by registering a contact object for the nameserver. Once you have obtained and activated the NIC handle assigned you can login to our site and proceed with the nameserver registration by clicking on "Register" under the "Nameservers" heading.

Technical contact of a nameserver can switch himself out for another contact by logging in and go to nameserver list and clicking by the nameserver that shall be changed. Please enter the username (NIC handle) of the new contact of the nameserver there.

On the same page the contact can also change IP addresses of nameservers that have .is in their hostname.

The only way to test a particular UDP service is to query the service that listening on the particular port. Thus the only way to test if a DNS server is running on UDP port 53 is to make a DNS query. As there is no way of knowing which zones are served by that host, so a query for the root zone NS records is made. A secondary query is also made, in case the root zone fails.

To verify that a nameserver is running, a reply is required. It can be any RCODE as long as some reply is sent. A timeout is not acceptable.

According to RFC1035 the RCODE should be one of those below: (RCODE names are from BCP42/RFC2929 )

SERVFAIL 2  Server failure - The name server was
            unable to process this query due to a
            problem with the name server.

REFUSED  5  Refused - The name server refuses to
            perform the specified operation for
            policy reasons.  For example, a name
            server may not wish to provide the
            information to the particular requester,
            or a name server may not wish to perform
            a particular operation (e.g., zone
            transfer) for particular data.

Or the reply can be NOERROR, with the root zone NS records, but not replying at all is not an option.

It is important to realize that TTL is not an attribute of an entire domain (zone). TTL is an attribute of each record in the zone. ISNIC only requires a minimum TTL on the nameserver records within the domain (NS resource records).

The value of the TTL field in the NS records affects the query-rate on the ".is" nameservers, therefore there is a certain minimum enforced. Please note that this minimum TTL requirement only applies to the NS records.

It is possible to debate as to what precisely the minimum value should be, but experience in recent years suggests that these values should only be lowered from rather high defaults if some changes are planned. According to RFC1912 :

  "Popular documentation like [RFC1033 ] recommended a day for the minimum TTL,
   which is now considered too low except for zones with data that vary regularly.
   Once a DNS stabilizes, values on the order of 3 or more days are recommended.
   It is also recommended that you individually override the TTL on certain RRs
   which are often referenced and don't often change to have very large values
   (1-2 weeks). Good examples of this are the MX, A, and PTR records of your
   mail host(s), the NS records of your zone, and the A records of your nameservers."

and according to RFC1030 :

  "Most host information does not change much over long time periods. A good way
   to set up your TTLs would be to set them at a high value, and then lower the
   value if you know a change will be coming soon. You might set most TTLs to
   anywhere between a day (86400) and a week (604800). Then, if you know some
   data will be changing in the near future, set the TTL for that RR down to a
   lower value (an hour to a day) until the change takes place, and then put it
   back up to its previous value."

A recent study on DNS performance concludes that

  "It is not a good idea to make the TTL values low on NS records, or
   for A records for name servers. Doing so would increase the load on the root
   and [g]TLD servers by about factor of five and significantly harm DNS scalability."

from DNS Performance and the Effectiveness of Caching by Naeyeon Jung, Emil Sit, Hari Balakrishnana and Robert Morris ACM Transactions on Networking, Vol. 10, NO. 5 October 2002.

This applies to all TLD servers, both gTLD- and ccTLD-servers as well as to the root servers.

Also see news article ISNIC published on the matter.

Note: As of november 2017 ISNIC does not require PTR records on nameservers.
The delegation requirements for .is domains were decided on by the .is community many years ago. One of the primary goals was that the .is domains would only be delegated to properly set up and properly managed nameservers. Statistically, the owners and operators of such nameservers have had no problem satisfying the PTR record requirement. This requirement makes various DNS abuses harder to achieve using .is domains (such as poisioned glue records, double-flux domains and others). This requirement originates from the same sentiments as a similar requirement on mailservers - which is now more-or-less universal as a method to reduce the risk of various kinds of misuse.

Of course there will be nameservers that are properly managed, but their operators decide not to correctly deploy PTR record sets. And there will be nameservers that are badly managed but with correct PTR records. However, the intent here is to increase the level of trust in the nameservers to which .is domains are delegated. Thus, the .is requirements apply to all and no provision is made for exceptions.

While RFC1912 "Common DNS Errors" is not a standards track document, ISNIC decided long ago to adopt many of it's recommendations as part of ISNIC's delegation requirements for .is domains.

From RFC1912 (Common DNS Errors):

  "Make sure your PTR and A records match.  For every IP address, there
   should be a matching PTR record in the in-addr.arpa domain.  If a
   host is multi-homed, (more than one IP address) make sure that all IP
   addresses have a corresponding PTR record (not just the first one).
   Failure to have matching PTR and A records can cause loss of Internet
   services similar to not being registered in the DNS at all.  Also,
   PTR records must point back to a valid A record, not a alias defined
   by a CNAME."

From RFC2181 (Clarifications to the DNS Specification)

  "10.2. PTR records

   Confusion about canonical names has lead to a belief that a PTR
   record should have exactly one RR in its RRSet.  This is incorrect,
   the relevant section of RFC1034 (section 3.6.2)  indicates that the
   value of a PTR record should be a canonical name.  That is, it should
   not be an alias.  There is no implication in that section that only
   one PTR record is permitted for a name.  No such restriction should
   be inferred."

According to RFC5966 :

"....any DNS server needing to send a UDP response
 that would exceed the 512-byte limit is for the server to truncate
 the response so that it fits within that limit and then set the TC
 flag in the response header.  When the client receives such a
 response, it takes the TC flag as an indication that it should retry
 over TCP instead."

And in section 4 of RFC5966 states:

"All general-purpose DNS implementations MUST support both UDP and TCP
 transport.

  o Authoritative server implementations MUST support TCP so that they
    do not limit the size of responses to what fits in a single UDP
    packet."

Accordingly, ISNIC requires nameservers hosting ".is" domains to support queries over TCP.

Note the following before deleting the domain:

1. Would someone buy the domain? Domains increase in value as they age and if they have a good standing in search engines.
2. Anyone can register the domain name and will be able to receive and send emails with any previously used email address.
   1. Are you using an email address with this domain to log in anywhere?
   2. Will someone with your old email address be able to use "lost password" for your social media to reset the password?
3. Anyone can register the domain after it has been deleted and get web traffic meant for your business.
   3. Would it be okay if a competitor registers the domain name?
   4. Are any links using this domain expected to be directed towards your business? These could be links in old emails you may have sent which customers might trust will direct them to your business.
   5. Is the domain name used for nameservers that are in use?

To delete (deregister) your ".is" domain, you begin by logging onto the ISNIC web using your NIC-handle on "My page, then find the domain drop-down menu and select "Domain delete". Select the domain or domains you wish to delete and submit the request.

Please note that registrant and administrative contacts will receive e-mail from ISNIC asking them to confirm this action. If no confirmation is received within three days, the domain will remain registered.

If the domains renewal fee is not received by ISNIC by the expiration date of the domain, the domainwill be disabled and deleted after a 30 day grace period.

ISNIC does not have the authority to resolve such matters. In the event of a dispute between two parties as to who has the greater right to register and use a particular domain name, the matter must be decided by the competent authorities (courts or competition authorities). In exceptional cases, however, such matters may be resolved by the Board of Appeals.

It is important that the claim in such cases is formulated in such a way that the ruling can be technically enforced.

You must demand that the current registrant of the domain name that you believe you have a greater right to transfer the domain name to you (i.e. make you the new owner, and change the domain name's contact details accordingly). Please note that it is not sufficient to demand that they de-register the domain name, as this will make it available for registration by anyone and there is no guarantee that it will end up in your hands.

It is safest to request a dispute lock on the domain as soon as such disputes are starting. This way, the domain is automatically registered to you if its owner decides to deregister it before a ruling is issued, or if the domain is ordered to be deregistered by a ruling. See dispute lock.

Closing a ".is" domain based on domain's usage (e.g. content of a website pointed to by the domain, e-mail content sent to or from the domain and so on) can be requested by a formal court order from an icelandic court, or a request from relevant icelandic authorities. ISNIC can also decide to close a domain by referring to article 10, chapter 2 of the ISNIC registration rules.

ISNIC is not responsible for the registrant's usage of his/her domain. It is ISNIC's duty and prime function to maintain uninterrupted service to all ".is"-domains and be sure that the registration information of a domain is correct so that the current registrant for a domain can always be identified.

Other than that, there are three reasons for closing a domain:

1. non-payment of the domain's fees,
2. the domain's technical setup is not according to ISNIC's requirements for an extended period,
3. if ISNIC considers the registration information wrong or incomplete.

Note that it is at ISNIC's sole discretion wether the information provided about the registrant is adequate or not. Once a domain has been closed (put on hold) due to incomplete registrant information, ISNIC reserves the right to ignore any further attempts by the registrant to correct the registration.

If the monthly test reveals that a domain does not comply with ISNIC's requirements, the following Misconfigured Domain Parking is initiated:

1. Warning e-mails are sent weekly to the domain's contacts. First only the zone contact but eventually zone, tech and admin contacts and finally the registrant is added.
2. If the problem persists for 8 consecutive weeks, the domain is suspended: it is marked inactive in the registry and its DNS records are removed from the ".is" zone file
3. After the domain has been put on-hold it will be tested daily and activated if found to comply with the requirements.
4. After another 30 days the domain is moved to the ISNIC parking servers (the DNS server settings for the domain are changed).

If the domain setup is brought into compliance (issues are resolved) before the domain is transferred to the ISNIC parking servers, the domain will be re-listed in the ".is" zone automatically and no further action need be taken.

If the domain setup is brought into compliance (issues are resolved) after the zone has been moved to ISNIC's parking servers, then one of the domain's contacts will need to use this website to redelegate the domain to the correct name servers.

Step 1

Login to the appropriate NIC-handle on isnic.is.

Step 2

Go to Change contacts page and select domains that you want to change.

Enter contact NIC-handle to billing field and click on Submit to submit changes.

Note: How do I change a domain's contacts?

When a contact object (registrant, admin, technical or billing contact) is registered with ISNIC an e-mail is sent to the registered e-mail address requesting that the contact (person or other) confirm their willingness to register, and the validity of the e-mail address. This e-mail contains an URL that must be followed to activate the NIC-handle.

Alternatively, the NIC-handle can be activated by setting a password. Visit here and type in your NIC-handle and then select the "Lost password" link.

Step 1

Login to your account at isnic.is.

Step 2

Go to My settings and select Notifications.

Step 3

Switch the toggle button on or off to enable or disable notifications.

A domain can be transferred from one registrant to another via the ISNIC web interface.

Step 1

Login to the current registrant’s NIC-handle on isnic.is.

Step 2

Go to My page, click on Domain and select Registrant Transfer from the drop-down list.

Step 3

Select the domain/s you want to transfer and type in the NIC-handle of the new registrant in the column below. The new registrant must have a valid NIC-handle. If they do not, they must register a contact and obtain a NIC-handle for the domain to be transferred to.

Step 4

The current registrant must confirm the change of registrants by following a link in an email sent to the registrant’s email address and clicking on Confirm to confirm the change of registrants. Note that you must be logged in as the current registrant when you follow the link, or login to the registrant's NIC-handle after following the link in the email, for the confirmation button to appear.

If the domain's current registrant does not have a confirmed e-mail address, the domain's administrative contact will receive the confirmation email to confirm the request.

ISNIC does not operate a registry/registrar model. The registrants (or their representatives) interact directly with the .is registry. Each domain has up to four contacts with varying degree of control over the registration. (See Why are there multiple contacts?) The registration management is transferred by changing some or all of these contacts. See also How do I change domain's nameservers? (Point to another hosting provider).

If a registrant or contact supplies ISNIC with an Icelandic national identification number ("kennitala") when registering a domain or a contact, ISNIC sets the name according to the national registry. If the contact selects to synchronize their address with the national registry as well, ISNIC will set the address in the WHOIS database to the offical address in the national registry. In this case the Registration Certificate published by ISNIC will contain the sentence "Registration verified by ISNIC" - Example.

Account statements and invoices are accessible on My page, logged in as the domain's billing contact.

Step 1: Login

See instructions on how to login here.

Step 2: Account statement

Go to My page, click on Payments and choose Invoices from the drop-down list.

Choose the time period that you want to get invoices for and click on Submit or Submit sid. to receive the account statement for all NIC-handles registered on the kennitala, if they are more then one.

Step 3: Open invoices

Open the downloaded PDF file and click on the blue-colored SR-numbers in the account statement to open each invoice on PDF.

Lookup your domain on our main page to see the registered contacts. If you have lost your password you can :

1. Use "lost password" to reset the password through e-mail.
2. If the e-mail is unavailable, use "lost password" with the SMS option to reset the password via a registered mobile number.
3. For a contact with an icelandic kennitala use Auðkennisappið or your electronic ID on your SIM-card in your mobile phone. If the contact has an icelandic company kennitala the chairman of the board can log in using their personal kennitala in Auðkennisapp or electronic ID on mobile phone and on "My contacts" log in as the company NIC-handle.
4. Otherwise you need to fill out a form.

For a contact with an icelandic kennitala use Auðkennisappið or your electronic ID on your SIM-card in your mobile phone. If the contact has an icelandic company kennitala the chairman of the board can log in using their personal kennitala in Auðkennisapp or electronic ID on mobile phone and on "My contacts" log in as the company NIC-handle.

Otherwise fill out "Change contact authentication information" form and ISNIC has to verify the contact and for that service ISNIC charges a fee (see prices).
Note: for this to be possible at all, the contact's registration information must be as accurate as possible.

The corresponding non-IDN domain is constructed from the IDN domain according to the following table:

 þ -> th   á -> a    í -> i
 æ -> ae   é -> e    ó -> o
 ö -> o    ý -> y
 ð -> d    ú -> u

ISNIC does not have any official registrars. The registrants have direct access to the ".is" registry and deal directly with the registry. Anyone can host ".is" domains as long as their nameservers meet ISNIC's technical requirements, and the domains zone as set up on those nameservers meets ISNIC's delegation requirements.

A DNS hosting provider that agrees to host ".is" domains for their customers, needs to register their nameservers with ISNIC, see "How do I register my nameservers with ISNIC?", and make sure they are willing to meet ISNIC's delegation requirements.

A DNS hosting provider can additionally apply for status as a registered ISNIC DNS Service Provider (DNSP/ISP) for ".is" domains. DNSPs have additional control and access. Please see the application forms for the terms and conditions of such registration.

ISNIC offers EPP access to everybody that have shown competency against our development environment.

A registered DNS service provider (DNSP) is a provider that has registered with ISNIC as such and is willing and able to host ".is" domains according to ISNIC's technical delegation requirements. The DNSP is listed with ISNIC, and has access to the DNSP portal on the ISNIC web.

Note: This status is not needed to register nameservers. See How do I register my nameservers with ISNIC?.

Note: ISNIC registered DNSPs used to be called ISPs. The name was changed to clarify what kind of hosting services they provide (DNS hosting, as opposed to web- or e-mail hosting).

Domains can be parked, i.e. temporarily delegated to a special set of parking nameservers. A registrant may park a domain if e.g. the zone is not ready at the time of registration or the production nameservers have gone offline for a long period of time and the domain is in danger of being deleted.

While a domain is parked it will not receive any e-mail and no websites will be active. If you choose to park a domain you select the option "Parking" from the DNSP's dropdown list. The registrant can park or unpark a domain at any time (via the ISNIC web -- see How do I change domain's nameservers? (Point to another hosting provider)).

Domain parking is a free service.

If you need e-mail services for your domain, you must contact a service provider which can accept e-mail on your behalf. You need to establish such services before you can change the MX records for your domain.

If you do not have DNS services for your domain, you can configure DNS records for e-mail using ISNIC DNS Hosting. See How do I add DNS records to into ISNIC DNS Hosting?

Informed consent of cookie usage is not required if cookies are important for the working of the website and is not used for other purposes, or if a first-party cookie is used for the web chat. Cookie usage on ISNIC's website is first party and is important for the working of the website.

Step 1: Set up Microsoft 365

In the Microsoft 365 setup page, Microsoft recommends using a TXT record to verify your domain. The TXT record usually looks something like this: MS=ms12345678 (your numbers will differ). Copy the record and go back to ISNIC’s page.

Step 2: Set your domain up on ISNIC’s nameservers

Login and click the domain name in your domain list on My page.

Click Redelegate under Nameservers.

There you choose ISNIC DNS Hosting and click on Submit.

It could take up to 10 minutes for your domain to be setup on ISNIC’s nameservers.

Step 3: Add DNS records

a. When the domain has been setup on ISNIC’s nameservers, you can add the DNS records from Microsoft to your domain. Go back to your domain's managment panel and click on Edit DNS records under DNS records. On the DNS page you choose Microsoft 365 from the drop-down list on the top of page and the DNS records from Microsoft will appear.

b. Paste your TXT Verification code in the required field and click on Submit.

Step 4: Verify Microsoft 365

Go back to your Microsoft 365 setup page and click on Verify. Your domain will now connect to your Microsoft 365 account.

ISNIC DNS Hosting is an extra service provided by ISNIC meant for smaller organisations or persons to get newly registered domains into operation quickly. The service is limited for example users that need DNSSEC need to host their domains with another DNS provider. See terms about usage of the service ISNIC DNS Hosting.

ISNIC DNS Hosting is not to be confused with ISNIC's operations of the ccTLD .is. Domains that are delegated to ISNIC DNS Hosting for example use the nameserver forwarding01.sandbox.isnic.is. See diagram below:

                                    ISNIC's domain                   Root zone
                                    operated by ISNIC                operated by 12 independent organisations

                                          │                            │
            ┌──────────────┐          ┌───┴───┐         ┌────┐       ┌─┴─┐
            │ forwarding01 │    .     │ isnic │    .    │ is │       │ . │
            └──────┬───────┘          └───────┘         └──┬─┘       └───┘
                   │                                       │

            ISNIC DNS Hosting                         ccTLD .is
            Extra service                             operated by ISNIC

When a customer registers a domain with the ISNIC registry (for example dæmi.is) then the domain is registered in the .is zone with NS records. If the customer also chooses to use the service ISNIC DNS Hosting then the domain dæmi.is is delegated to forwarding01.sandbox.isnic.is in the .is zone but forwarding01.sandbox.isnic.is also has NS records for the domain.

Instuctions how to use ISNIC DNS Hosting can be found at How do I add DNS records to into ISNIC DNS Hosting?.

The following instructions are made for those who want to use ISNIC DNS Hosting. The instructions do not apply if a domain is setup on nameservers of a 3rd party DNS hosting provider.

ISNIC provides DNS hosting for .is domains. To be able to add DNS records to the domain, it must first be setup on ISNIC’s nameservers.

Step 1: Set domain up on ISNIC's nameservers

Login and click the domain name in your domain list on My page.

Click Redelegate under Nameservers.

There you choose ISNIC DNS Hosting and click on Submit.

The redelegation process can take up to 10 minutes, after which the DNS record interface is activated.

Step 2: Add DNS records

When your domain has been setup on ISNIC’s nameservers, you can add DNS records. Go back to your domain list and select the domain and click on Edit DNS records under DNS records. From there you can add new DNS records and edit existing records.

a) Add single DNS records

In the drop-down list on top you can choose Single DNS record. Choose the Type of DNS record you want to add and insert appropriate Name (Host) and Value (Data, Content) and click on Submit.

• If a DNS record’s Name is left empty it will automatically be set as @ which will work as the domain’s root.
• When adding a DNS record for www.yourdomain.is you only type “www” as the Name (host), not “www.yourdomain.is”.

b) Ready-made templates for common services

You can choose ready-made templates to add DNS records from popular mail services, website builders and hosting providers. Choose your service provider in the drop-down list and you’ll see the DNS records that will be added as well as those that will be removed, if any. Click on Submit to add the DNS records.

If your domain is hosted by a 3rd party DNS hosting provider and setup on their nameservers, you can add DNS records on their end but no changes are made through ISNIC.

It depends on the hosting provider how these changes are made, but the most common way is to login to the hosting provider’s website and add the DNS records through their interface. Contact your hosting provider if you have trouble adding the records to your domain.

If you’re not sure who your hosting provider is, you can see which nameservers your domain is setup on by typing the domain name in ISNIC's WHOIS Database

Step 1: Squarespace setup

The first step is to follow Squarespace's instructions to connect a domain. When you see a picture of your DNS records from Squarspace, go to isnic.is.

Step 2: Set your domain up on ISNIC's nameservers

Login and click the domain name in your domain list on My page.

Click Redelegate under Nameservers.

There you choose ISNIC DNS Hosting and click on Submit.

It could take up to 10 minutes for your domain to be setup on ISNIC’s nameservers.

Step 3: Add DNS records

a. When the domain has been setup on ISNIC’s nameservers, you can add the DNS records from Squarespace to your domain. Select your domain from your domain list and click on Edit DNS records under DNS records. Choose Squarespace from the drop-down list on the top of the page and the DNS records from Squarespace will appear.

b. Squarespace provides you with a Name (host) for a CNAME record with the Value (data) verify.squarespace.com. Copy the Name and paste it in the required field and click on Submit.

Step 4: Confirm

When all the DNS records from Squarespace have been added, you can click on the Refresh button on your Squarespace site, where your DNS records are shown. Your domain will now connect to Squarespace.

Step 1: Set up your Google Workspace account

First you sign up for Google Worspace and go through the first steps in their setup process. When you see a Verification code, copy the code and go to ISNIC’s page.

Step 2: Set domain up on ISNIC's nameservers

Login and click the domain name in your domain list on My page.

Click Redelegate under Nameservers.

There you choose ISNIC DNS Hosting and click on Submit.

It could take up to 10 minutes for your domain to be setup on ISNIC’s nameservers.

Step 3: Add DNS records

a. When the domain has been setup on ISNIC’s nameservers, you can add the DNS records from Google to your domain. Select your domain from your domain list and click on Edit DNS records under DNS records. On the DNS page, you choose Google Workspace from the drop-down list on the top of page and the DNS records from Google will appear.

b. The Verification code from Google is either MX or TXT, choose the correct Type of DNS record and paste your Verification code in the Data field and click on Submit.

Step 4: Activate Gmail

Go back to your Google Workspace setup page and click on Activate Gmail. Your domain will now connect to your Google Workspace account.

Step 1: Setting up Google Sites

a) Adding your domain

First you need to create Google Sites page and access it's settings . There you choose Custom domains, click Start setup (or add), and enter www and your domain (e.g. www.dæmi.is ).

b) Get the verification code

A link asking you to verify your ownership appears if your domain hasn't been verified. Click it. There you can choose the Domain method and copy the code displayed on their page which looks similar to: google-site-verification=gwF5euksRmSXEwRdq7A04kuFFkZbVJweB6j0nE6iJQl

Step 2: Delegate your domain to ISNIC's nameservers

Login and click the domain name in your domain list on My page.

Click Redelegate under Nameservers.

There you choose ISNIC DNS Hosting and click on Submit.

It could take up to 10 minutes for your domain to be setup on ISNIC’s nameservers.

Step 3: Domain setup

When the domain has been setup on ISNIC’s nameservers, you can add the DNS records from Google to your domain. Select your domain from your domain list and click on Edit DNS records under DNS records. Beneath DNS templates you should choose Google Sites. Copy and paste the code from step 2 into the large text field marked with TXT verification code. Click the submit button.

Step 4: Verify the domain at Google

Go back to the Google Sites page's settings , choose Custom domains and verify your ownership. When you click continue the verification process starts. Google verifies the domain by looking for the TXT record with the expected host and verification code.

The domain is now connected to your Google Sites via the www subdomain, but a redirect service can be setup at Google or a third party. Note that if you have accessed the domain recently then you will be stuck with the old domain settings for 24 hours.

Step 1: Set domain up on ISNIC's nameservers

Login and click the domain name in your domain list on My page.

Click Redelegate under Nameservers.

There you choose ISNIC DNS Hosting and click on Submit.

It could take up to 10 minutes for your domain to be setup on ISNIC’s nameservers.

Step 2: Add DNS records

When the domain has been setup on ISNIC’s nameservers, you can add the DNS records from Shopify to your domain. Select your domain from your domain list and click on Edit DNS records under DNS records. On the DNS page, you choose Shopify from the drop-down list on the top of the page and the DNS records from Shopify will appear.

Step 3: Change Shopify settings

According to Shopify's instructions, you go to Domains under Settings and click on Connect existing domain. There you type in your domain name and click on Verify connection. Now your domain will connect to Shopify.

The following instructions are made for those who want to use Wix's nameservers. Note that if your domain is already setup on different nameservers, that connection will be lost when you make the change.

Step 1: Set domain up at Wix

Login to your Wix account and follow Wix's instructions. Under Domains you'll find Add An Existing Domain and click on Connect a domain you already own. Follow Wix's instructions on to step 2.

Step 2: Find Wix's nameservers

Step 2 in Wix´s instructions is logging in to your domain host provider, which is ISNIC in this case. Click on I logged in, then click on I found my domain settings and I found the nameservers. Copy the nameservers provided by Wix and Log in to your account at isnic.is.

Step 3: Connect the domain to Wix

Login and click the domain name in your domain list on My page.

Click Redelegate under Nameservers.

Under Nameservers you'll enter the first nameserver into Primary nameserver and the second Wix nameserver into the second text input and click on Submit.

It could take up to 10 minutes for your domain to be setup on WIX's nameservers.

Step 4: Connect Wix page to the domain

On Wix's page you can click on I’ve replaced my nameservers and your domain should connect to your Wix site.

Note that in order to connect the domain to Webflow a site plan at Webflow is needed.

Step 1: Delegate your domain to ISNIC's nameservers

Login and click the domain name in your domain list on My page.

Click Redelegate under Nameservers.

There you choose ISNIC DNS Hosting and click on Submit.

It could take up to 10 minutes for your domain to be setup on ISNIC’s nameservers.

Step 2: Set the domain up at Webflow

First you need to log in at Webflow. According to Webflow instructions you need to go to Site settings > Publishing > Production and there click Add a custom domain and Manually add domain. There you type the domain name and click Add domain.

Step 3: Add DNS records

When the domain has been setup on ISNIC’s nameservers, you can add the DNS records from Webflow to your domain. These instructions assume you will be using SSL hosting at Webflow

On ISNIC's website select your domain and click on Edit DNS records under DNS records. On the DNS page, you choose Webflow from the drop-down list on the top of the page.

Note that one TXT record needs filling out with a verification code from Webflow. That code can be found in Site settings on Webflow's website. After that you click the submit button.

Transactions for payment cards, put into storage with ISNIC before law about payment service, nr. 114/2021 (the PSD2 directive from the European Union) was put into effect, can be denied. The solution is to delete the card from the ISNIC storage and put it back again.

The error indicates a domain cannot be found on the nameservers.

Note: The error is outside of ISNIC's systems. You need to resolve this through your DNS hosting provider. The domain needs to be set up on the nameservers before delegating the domain to them.

Step 1: Find out the reason

1. Your domain isn't set up with your DNS provider: Login to your DNS provider's account, add your domain, and ensure it's configured with the nameservers.
2. Domain not yet set up on nameservers: The hosting provider hasn't configured your domain on their nameservers yet. Contact your hosting provider to confirm that your domain is properly set up.
3. Incorrect nameservers provided: The hosting provider may have given you incorrect nameservers. Verify the nameservers with your hosting provider to ensure they are correct.
4. Typo in domain name: The domain name may have been entered incorrectly, or the hosting provider has set up a different domain. Verify the domain name with your hosting provider.
5. Domain verification required: Some hosting providers require domain verification of your domain before it can be hosted on their nameservers. You can often select alternative domain verification methods such as adding a TXT record to your domain's zone, or simply talking to their customer support. If you choose the TXT method, then you can follow How do I add DNS records to into ISNIC DNS Hosting?.

Step 2: Set up the domain

Login to your DNS hosting provider's platform and make sure your domain is correctly configured on the nameservers. If you're unsure how to proceed or need help, please contact your DNS provider's support team on how to host your domain on their nameservers.

Step 3: Redelagate your domain

Once your domain is on the set of nameservers, you should be able to redelagate your domain. See How do I change domain's nameservers? (Point to another hosting provider).

Note: ISNIC's technical requirements.

The error occurs because of a CNAME record is placed at the root (apex) of your domain and blocks required NS or SOA records which cannot be found.

Note: You cannot add the CNAME records to the domain (e.g., yourdomain.is), but you can add it to subdomains (e.g., www.yourdomain.is).

Step 1: Remove the CNAME record

Login to your DNS hosting provider's platform and remove the CNAME record from your domain. If you're unsure how to proceed or need help, please contact your DNS provider's support team on how to remove the record.

Step 2: Redelagate your domain

Once the CNAME record has been removed the NS or SOA records should be reinstated and you should be able to redelagate your domain. See How do I change domain's nameservers? (Point to another hosting provider).

The error indicates a domain is setup on a different set of nameservers than expected.

Step 1: See the suggested nameservers

A hint with a list of suggested nameservers is available on the error page. If those are the nameservers that you intent to use, please try to delegate your domain using them by following instructions in Step 2.

If you believe the suggested nameservers are incorrect, please login to your DNS hosting provider's platform and setup your domain on the specified DNS zone. If you're unsure how to proceed, consider contacting your hosting provider's support for assistance.

Step 2: Redelegate your domain

Redelegate the domain using the suggested list of nameservers. See How do I change domain's nameservers? (Point to another hosting provider).

You should see a button that will automatically add the suggested list to the target nameservers.

The error occurs because the SOA records for your domain on the authoritative nameservers are not identical. SOA records must match across all authoritative nameservers.

Note: Different serial numbers for your domain indicate that it is not served identically on all nameservers.

Step 1: Find out the reason

The domain must be identical on all authoritative nameservers, note that it could be different if:

1. DNS zone not synchronized: Recent changes to DNS of the domain may not have synchronized. Contact your hosting provider to confirm the DNS zone is synchronized across all nameservers.
2. Incorrect nameservers: You may have specified an incorrect set of target nameservers (e.g., from different providers or with different DNS zone setups). If this is the case, you will see a suggested list of nameservers. Proceed to Step 3 and try delegating your domain using the suggested nameservers.
3. Misconfigured DNS zone: The DNS zone configuration is not identical across all nameservers. Login to your DNS hosting provider's platform, and ensure that the DNS zone setup is identical on all nameservers.

Step 2: Set up the domain

Login to your DNS hosting provider's platform and make sure the DNS zone for your domain is correctly configured on all nameservers. If you're unsure how to proceed or need help, please contact your DNS provider's support team on how to synchronize the DNS zone.

Step 3: Redelegate your domain

Once your domain is correctly configured on the nameservers, you should be able to redelegate your domain. See How do I change domain's nameservers? (Point to another hosting provider).

The error indicates a disagreement between the domain's delegation and its set of NS records; and that the domain appears to be set up on different nameservers than expected.

Note: NS records should be identical across all nameservers.

Step 1: Use the suggested nameservers

A hint with a list of suggested nameservers is available on the error page. If those are the nameservers that you intent to use, please try to delegate your domain using them by following instructions in Step 2.

If you believe the suggested nameservers are incorrect, please ignore Step 2 and refer to How to fix "Missing NS records for nameservers"? for further assistance.

Step 2: Redelegate your domain

Redelegate the domain using the suggested list of nameservers. See How do I change domain's nameservers? (Point to another hosting provider).

You should see a button that will automatically add the suggested list to the target nameservers.

The error indicates a disagreement between the domain's delegation and its set of NS records.

Note: NS records should be identical across all nameservers.

Step 1: Verify nameservers with your hosting provider

Login to your DNS hosting provider's platform. Ensure that the nameservers you are using to delegate your domain match those provided by your hosting provider.

Step 2: Verify NS records

Confirm that all nameservers have identical and corresponding NS records for your domain. If you're unsure how to proceed or need assistance, copy the error message text and send it to your DNS provider's support team. They can help you fix your domain's configuration.

Step 3: Redelegate your domain

Once your domain is correctly configured on the nameservers, you should be able to redelegate your domain. See How do I change domain's nameservers? (Point to another hosting provider).

This error occurs because the Time To Live (TTL) for your domain's NS records is set below the required minimum of 86400 seconds.

Note: Why does ISNIC require minimum TTL values?

Step 1: Increase TTL values at your hosting provider

Login to your DNS hosting provider's platform and go to the DNS zone managment section for your domain. Find the NS records and update their TTL values to 86400 seconds.

If you're unsure how to proceed or need help, please contact your DNS provider's support team on how to raise TTL values for your domain.

Step 2: Redelegate your domain

Once the TTL values have been updated, you should be able to redelegate your domain. See How do I change domain's nameservers? (Point to another hosting provider).