Domain verification is the process of proving that your organization owns or controls a specific domain. This prevents spoofing or unauthorized use of your domain and enables secure organization-level features in Windsurf, such as SSO and user management. In Windsurf, verifying your domain is required so that users with emails from your organization can be recognized and managed. The domain you need to verify should be the top-level domain of your users’ email addresses (for example, if your users log in with name@company.com, you must verify company.com).

How to verify your domain in Windsurf

1

Add your domain in the Windsurf portal

Enter the domain you want to verify (e.g., company.com). Windsurf will generate a unique verification token and TXT record.⚠️ This token will only be shown once. Be sure to copy it before closing the window.
2

Add the TXT record to your DNS settings

In your DNS provider’s management console, create a new TXT record with the value provided. For example:
windsurf-verification=<your-verification-token>
  • Name/Host: as specified in the Windsurf portal (often @ or left blank).
  • Value/Content: the exact token string shown in the portal.
3

Click “Verify” in Windsurf

After adding the record, return to the Windsurf portal and click the Verify button to complete the process.
4

Done

If the TXT record is detected, your domain will be marked as verified.
DNS changes can take up to 24–48 hours to propagate. If verification does not succeed immediately, wait a bit longer and try again.