Domainnamen, DNS-Einträge und Zertifikate für eine Website

This page describes, how you get a domain name for your website, and what DNS entries have to made for it.

In a nutshell

The following conditions must be met so that your website is accessible online:

  1. DNS records for the website's domain name and its aliases (if applicable) must exist (configured by LRZ DNS team).
  2. The DNS records for the domain names must point to the correct webserver daemon pool (configured by LRZ DNS team).
  3. All website names must be configured on the webserver that delivers the website (configured by LRZ web hosting team).
  4. The type of a domain name, and how it is administrated, determines the efforts neccessary to get a server certificate.

Introduction

Websites are usually given human-readable names like www.example.com. A so-called DNS record is necessary to map a human-readable website name to a certain computer. This mapping is done by one of the many DNS servers found across the web.

The following conditions must be met so that your website is accessible online:

  1. DNS records for the website name (and its aliases, if applicable) must exist (configured by LRZ DNS team).
  2. The DNS records must point to the correct webserver daemon pool (configured by LRZ DNS team).
  3. All website names must be configured on the webserver that delivers the website (configured by LRZ web hosting team).

Tasks 1 and 2 are handled by the LRZ DNS team, whereas the third action is done by the LRZ web hosting team.

Attention

Usually, organisations outside LRZ usually have to be involved in order to obtain a DNS name (see below). This may take several days, in some cases even several weeks. Please take this into account when planning your schedule.

 Server-Zertifikat

Server certificate

(...)

How to obtain a domain name for your website

Choosing a website name

When choosing a domain name for your website, you will usually not have complete creative freedom, but will have to adhere to certain regulations set by your respective organisation. In addition, it is usually necessary for the names to be explicitly approved by your institution.

OrganisationRegulations for domain namesApproval
LMU

See "Informationen zur Domainvergabe im LMU-Serviceportal" (access restricted)

via the form
TUM

See "How can I establish an Internet domain?"

by TUM's CIO or the IO responsible
Other organisations within the Münchner Wissenschaftsnetz (MWN)

May differ between organisations, please research what applies to your specific case.

dependant on the respective organisation

Special case: Website name using a non-standard domain

It is possible to use a domain name with a so-called non-standard domain, but please be aware that there will be a few hurdles to overcome:

  • It will always have to be explicitly approved by your organisation.
  • Obtaining a non-standard domain will take time and usually money. On the other hand, choosing a subdomain from the list of standard domains comes at no additional charge.
  • Non-standard domain websites are not automatically added to our server certificate, but requires additional steps.
For a certificate, we need permissions and approval by the DFN-PKI. The organisation takes a few weeks or – in some cases – months. There are differences depending on wether the domain is registered with the LRZ or externally.

A. The domain is registered with the LRZ

If the domain name has been requested via the LRZ, or has been transfered to LRZ, you do not need to to anything further. Inclusion in our certificate is done in a documented process. Since many steps, people, institutions and interfaces are involved, it can a while.

B. The domain is registered externally

Consider a domain transfer to LRZ, so that "A" applies.

If this is not possible follow  instructions in "Case 2: Your domain ist hosted elsewhere".

If there is no reaction to the validation e-mail (be it that the hostmaster mailboxis not monitored) the LRZ is not able to provide certificates anymore. That means, that your domain will be removed from the certificate at the next certificate update (ususlly within weeks)! Your site will not be available via HTTPS, then!

Creation of the DNS records

If your domain is hosted by an external provider or your local organisation (e.g. your faculty/school), please ask them to create the necessary DNS records or change them. In some cases, the DNS records will be created together with informing you about their approval, removing the need for you to explicitly ask for their creation.

If the above does not apply to your case, please contact the LRZ DNS team via the LRZ Servicedesk and send them the following information:

  • Your (future) website's domain name and aliases (if applicable)
  • Informal proof that the desired domain name has been approved (e.g. by forwarding the CIO's email)
  • Organisation your website belongs to (LMU, TUM, or other organisation within the Münchner Wissenschaftsnetz/MWN)
  • The web server pool's IP address that the domain name shall point to (see below)

If possible, the DNS record should be made in the form of an alias to the pool's CNAME (CNAME record). However, in some instances the pool's IP address has to be used instead of its CNAME (A record or AAAA record). For more technical background information see these three articles on Wikipedia: CNAME record, A record, and AAAA record.

IP addresses for our web server pools

The table below shows the CNAMEs and IP addresses (IPv4 and IPv6) of our web server daemon pools for our serviced web hosting service.

OrganisationCNAMEIPv4 addressIPv6 address
LMUwwwv1.lrz.uni-muenchen.de

129.187.254.227

2001:4ca0:0:103::81bb:fee3

TUMwwwv4.tum.de

129.187.254.228

2001:4ca0:0:103::81bb:fee4

Other organisations within the Münchner Wissenschaftsnetz (MWN)wwwv1.mwn.de129.187.254.2522001:4ca0:0:103::81bb:fefc