Two-factor authentication means that the login requires a one-time password in addition to a user ID and password. The one-time password is an eight-digit password that is valid for only one login session. It is sent to registrars by text message.
In order to be able to log in, registrars must have already registered with FICORA.
EPP (Extensible Provisioning Protocol) is an XML-based technical interface. Domain name registrars can connect to the interface by using their own client software. FICORA does not provide ready-made client software and it is the registrar's responsibility to programme or acquire the client software. Registrars do not have to start using the EPP interface. Using both interfaces is also possible.
Before a registrar can start using FICORA's EPP interface, the registrar's own client software must be tested in FICORA’s EPP sandbox environment.
The address for EPP interface is https://epp.domain.fi (port 700).
FICORA's EPP interface is mainly based on the following RFC standards:
- RFC 4310 Domain Name System (DNS) Security Extensions Mapping for the Extensible Provisioning Protocol (EPP)
- RFC 5730 Extensible Provisioning Protocol (EPP)
- RFC 5731 Extensible Provisioning Protocol (EPP) Domain Name Mapping
- RFC 5732 Extensible Provisioning Protocol (EPP) Host Mapping
- RFC 5733 Extensible Provisioning Protocol (EPP) Contact Mapping
- RFC 5910 Domain Name System (DNS) Security Extensions Mapping for the Extensible Provisioning Protocol (EPP).
If a domain name registrar uses FICORA's EPP interface as the technical interface, it must meet the criteria derived from the requirements of the protection level (IV) of subdivision I, information assurance, of the currently valid version of Katakri (information security audit tool) with respect to the following:
- communications security
- system security.
In principle, the registrar is responsible for meeting the above-mentioned requirements. If necessary, FICORA may audit the registrar's operations.
Registrars may use FICORA’s whois service so that their customers are able to check whether a certain fi-domain name is available.
The whois service for fi-domain names is at whois.ficora.fi. To use the service, registrars need the whois client program that is included in most Unix and Linux operating systems.