Blog / What is an AuthCode and how to apply for it?

What is an AuthCode and how to apply for it?

by SW Team

A domain authcode, also known as an EPP (Extensible Provisioning Protocol) code, is a unique authorization code used to validate and authorize the transfer of a domain name from one registrar to another. This code is essential to ensure that only the rightful owner of the domain can initiate and complete the transfer process.

Below, we explain in detail what it is, what it is used for and how to request a domain authcode:

What is a domain authcode?

The domain authcode is an alphanumeric authorization code generated by the current domain registrar. It acts as a security measure to prevent unauthorized domain transfers, ensuring that only the domain owner can approve its transfer to another registrar.

What is a domain authcode for?

The domain authcode is used for:

  1. Authenticate the owner: Verify that the person who is requesting the domain transfer is really the legitimate owner.

  2. Authorize the transfer: Allows the transfer of the domain from one registrar to another, guaranteeing that the operation is secure and authorized.

  3. Security: Protects the domain against fraudulent or unauthorized transfers, adding an additional layer of security.

How do I request a domain authcode?

To request a domain authcode, you must follow these steps:

  1. Log in to your account at the current registrar: Log in to the registrar's account where your domain is registered.

  2. Find the domain management section: Navigate to the section where you manage your domains. This section may vary from registrar to registrar, but is usually located in the user control panel.

  3. Select the domain you wish to transfer: Find the specific domain you wish to transfer to another registrar.

  4. Request authcode: Look for an option to request the authcode or EPP code. Depending on the registrar, this option may be labeled “Get EPP code”, “Request authcode”, “Transfer domain”, etc.

    Some registrars provide the authcode directly in the control panel, while others send the code by email to the registered address.

  5. Receive and save the authcode: Once you have requested the authcode, receive it and keep it in a safe place. This code will be needed when you initiate the transfer with the new registrar.

  6. Start the transfer with the new registrar: Provide the authcode to the new registrar to start the transfer process. The new registrar will use this code to verify the authenticity of the transfer request with the current registrar.

Additional Considerations

  • Domain Status: Make sure your domain is not locked for transfers. This is known as “Registrar Lock”. If the domain is locked, you must unlock it before you can request the authcode.

  • New Registration Period: Newly registered or transferred domains cannot be transferred again within the first 60 days.

  • Data update: Verify that the contact information associated with your domain is up to date, especially the email address, as you will receive important notifications during the transfer process.

  • Verification with registrars: It is always advisable to check with the current registrar and the new registrar to confirm the specific requirements for your domain transfer, as policies and procedures may vary.

These procedures are specific to certain ccTLDs and may change over time or vary between registrars. Therefore, always verify current policies with the registrars involved before initiating a domain transfer.

For more details on how to apply for the AuthCode at SWHosting and other domain management related issues, please refer to our manual.

Although most domain extensions require an authcode to perform a secure transfer between registrars, there are some exceptions, mainly among certain country-code top-level domains (ccTLDs).

Here is a list of some domain extensions that generally do not require an authcode:

  • .uk (UK): Uses an “IPS tag” system for transfers. The domain owner must change the tag to the new registrar to complete the transfer.

  • .es (Spain): Does not require an authcode for the transfer of .es domains. The transfer is done through specific procedures of the regulator (

  • .de (Germany): Does not use an authcode in the traditional sense. The transfer is handled through internal authorizations managed by the registrars.

  • .ch (Switzerland) and .li (Liechtenstein): Both domains do not require an authcode. Transfers are made through specific procedures established by SWITCH, the organization in charge of managing these domains.

  • .at (Austria): No authcodes are used. The transfer is done through confirmations via registered e-mails.

  • .it (Italy): Generally, transfers do not require authcodes and are handled through internal procedures and email confirmations.

In summary, the domain authcode is an essential security measure for transferring domains between registrars. Applying for it is a relatively simple but crucial process to protect your domains from unauthorized transfers.