Domain Verification
The first step is to verify ownership of your domain by adding a DNS TXT record. Access your domain's DNS settings or management interface where you'll need to add a TXT record. The record should follow the format "chariot=<email>", where <email> is your primary Chariot account email address. You can find your primary email on Users page.
At your DNS management interface, set the text record for your root domain. For example, if your domain is YourDomain.com and your record is set at the root level (@), you would add a TXT record with the value "chariot=YourPrimaryEmail@email.com". Within the Chariot setup pop-up, you can copy and paste this value:
Once Set, your DNS TXT record might look something like this.
| YourDomain.com | Record type: | value: |
| @ | TXT | "chariot=YourPrimaryEmail@email.com" |
To verify that your record has been published, you can run the command dig +short TXT YourDomain.com if on a Mac or nslookup -type=TXT YourDomain.com if using Windows, and look for your record in the output.
Conclusion
Once you've added and verified the TXT record, you can proceed with configuring SSO for your organization. Note that DNS changes may take up to 48 hours to propagate across all DNS servers, though they typically take effect within a few hours. If you encounter any issues during the verification process, ensure that the TXT record is properly formatted and that you're using your primary Chariot email address. For additional assistance, contact our support team.
The following articles discus Okta and Azure SSO in more detail.
If you encounter any difficulties during setup or need assistance with SSO, reach out to support@praetorian.com for help.