What is an Auth Code for a domain transfer?
An authorization code is a security key needed to transfer a domain between registrars. It confirms that the current domain owner has approved the transfer. Without this code, moving a domain to another provider is not possible.
- Free Wildcard SSL for safer data transfers
- Free private registration for more privacy
- Free Domain Connect for easy DNS setup
What is an Auth Code and what is it used for?
The Auth Code (short for Authorization Code), sometimes also referred to as the AuthInfo Code, works like a domain password that is only available to the registered owner. It is made up of a combination of 6 to 16 letters and numbers.
In a domain transfer, the Auth Code functions as proof of authorization. Your new provider requires this code to host the domain on their server. It confirms that you are the rightful domain owner and protects against unauthorized takeovers. For this reason, requesting the Authorization Code is the first and most important step in any domain transfer.
Most providers, including IONOS, manage the domain transfer on your behalf. All you need to do is provide the current and new domain names, along with the corresponding authorization code, in a simple form. The provider will then take care of all remaining steps for you.
- Zero downtime
- Free SSL
- $0 transfer fee, plus great offers
How to obtain the Auth Code for your domain?
Option 1: Request the Auth Code from the registrar
In most cases, the hosting provider also acts as the domain registrar. They register the domain for you and supply the appropriate hosting plan. To initiate a transfer, you simply need to request the Auth Code from your current provider—usually by completing a short form on their website. In some cases, you may need to contact customer service directly. You will then receive the automatically generated AuthInfo Code, which must be provided to your new domain provider.
Beyond hosting providers, there are also independent domain registrars. When you registered your domain, you should have received contact details for your registrar, which you can use to request your domain’s Auth Code.
Option 2: Request the Auth Code from the registry
If you registered your domain directly with the registry for your top-level domain, you must request the Auth Code from that registry. For example, if you own a domain with the .us extension, the responsible registry is Verisign, where you can manage your domain directly through its services.
For other country-specific domains (e.g., .fr or .co.uk) as well as newer generic domain extensions like .shop, .music, or .nyc, the respective registries are responsible for issuing the Auth Code.
How long is an Auth Code valid?
The validity of an authorization code depends on the domain provider and the associated top-level domain. In most cases, an Auth Code is valid for up to 30 days. Some registrars set shorter timeframes to increase security during domain transfers. Once a code expires, a new one must be requested from your current provider before the transfer can continue. For generic TLDs, longer validity periods are common, while stricter rules may apply to country-specific domains.
It’s best to use the authorization code as soon as you receive it to complete the transfer. Delays can result in error messages from the new provider, forcing you to restart the process. To avoid issues, check the validity period with your current registrar in advance.