How To Verify Apple Business Manager Domains

  • Migration Team

by Katelyn Husvar

Before this new requirement, anyone could add a domain to their Apple Business Manager account and create Managed Apple IDs using this domain—even if they didn’t own it. This could lead to ownership conflicts and security concerns. However, now that Apple requires everyone to verify their Managed Apple ID domain names, you can be sure that your organization is the only one that can modify the DNS records for its domains. For more information about Apple Business Manager domains, please see the Apple Business Manager User Guide.

  • If I used the domain before the mandatory verification requirement, is it automatically verified?

    • No. Even if your Managed Apple ID domain name was in use well before the new verification requirement, it isn’t grandfathered in. You still need to complete the verification process.

  • What if more than one organization is using the domain?

    • If your Managed Apple ID domain name is used by multiple organizations, this shouldn’t present any ownership conflicts; each organization can independently verify the domain. However, only one organization can federate that domain. In this case, other organizations must move their Managed Apple IDs to another verified domain. Otherwise, they may receive error messages such as, “Managed Apple ID ending with this domain name is not allowed”.

  • How soon do I have to verify the domain?

    • You must verify your Managed Apple ID domain name within 14 calendar days of clicking the Verify button in Apple Business Manager.

  • Why did I get an email asking me to verify ownership of my domain?

    • If you get an email asking you to verify your domain, then another organization has claimed a domain that’s currently used by your Managed Apple IDs. You’ll have to verify your domain ownership within 14 days of receiving this email.

  • What if I can’t or don’t want to verify the domain?

    • In this case, you must move the Managed Apple IDs that you aren’t verifying to a reserved domain or a different verified domain; otherwise, you may receive error messages such as “Managed Apple ID ending with this domain name is not allowed.” By "reserved domain," Apple is referring to the default domain that shows up under Accounts. It’s the name of the domain that your organization enrolled in Apple Business Manager plus a number: Kandji1.appleid.com, for example.