Quick Setup Guide

This guide will help you get quickly configured and ready to grab some domains with Domain Grabber.

For frequently asked questions not covered in this setup guide, please consult our Support FAQ.


Please note:

  1. You will need an Amazon Web Services (AWS) account to use Domain Grabber
  2. Domain Grabber is for ‘grabbing’ domains. It does not provide day-to-day management of your domains. It provides a quick and easy way to register a domain using the AWS API. All management, including nameserver delegation, DNS management, etc. is through your AWS Dashboard.
  3. AWS has a default limit of 10 domain registrations. You can apply to raise the limit here.
  4. We cannot guarantee the timeliness of domain registrations, since it is out of our control. Our app simply provides a User Interface for the API calls between you and the registrar/reseller
  5. You have benefits and responsibilities when registering a domain. The specifics vary with TLD. Please consult our Support FAQ for further details


The setup of Domain Grabber falls into two areas:

Domain Grabber makes use of AWS (Amazon Web Services) credentials to perform it’s domain registration functions.Rather than using Root account credentials, we strongly recommend that you create a separate low-privileged IAM user for use with our App:

  1. Login to the AWS dashboard. Goto ‘Service’ -> ‘IAM‘.
  2. Select ‘Users’ and click ‘Create New Users’. Enter a username and ensure ‘Generate access key’ is checked. Click ‘Create’.
  3. Click ‘Show User Security Credentials’. Copy down the credentials and keep them safe. They will not be displayed again. Click ‘Close’.
  4. Click the newly created user. Click ‘Attach Policy’.
  5. For testing purposes, select the ‘AmazonRoute53DomainsFullAccess’ policy, and click ‘Attach Policy’. For production use, please see ‘further steps’, below.
  6. Enter the ‘Access Key ID’ and ‘Secret Access Key’ credentials into the ‘Settings’ page of the Domain Grabber app, exactly as they were shown earlier. Check your other preferences by scrolling down. When you are satisfied, tap ‘Save Settings’.
  7. You now have your IAM credentials for the AWS API. Continue on to configure them in the Domain Grabber app


Further security steps:
To further increase security, or for production environments, we recommend you create a custom IAM policy that has an even lower set of privileges.
This policy only allows the API credentials to be used for viewing and registering domains, and disallows privileged operations such as contact updates, registrar lock removal, domain deletion, and authcode retrieval.

  1. From the IAM service page of the AWS dashboard, select ‘Policies’ from the sidebar. Select ‘Get Started’, if shown.
  2. Select ‘Create Policy’. Choose ‘Create your own policy’. Enter a descriptive policy name, such as ‘route53domains-domaingrabberapppolicy’.
  3. Copy & paste the code block shown below into the ‘policy document’ area, and click ‘create policy’.
  4. Select ‘Users’ from the sidebar. Select the IAM user you created earlier to show the user page.
  5. Select ‘Attach Policy’
  6. Drop-down on the ‘Policy Type’ filter, and select ‘Customer managed policies’
  7. Select the policy we created earlier, and click ‘Attach Policy’
  8. You should see only one policy shown as ‘attached’ for the user. If you see ‘AmazonRoute53DomainsFullAccess’, you can detach it.
"Version": "2012-10-17",
"Statement": [
"Sid": "Stmt1424681268000",
"Effect": "Allow",
"Action": [
"Resource": [

With your IAM user credentials in hand, configure your defaults in the Domain Grabber App:

  1. Select the ‘Settings’ page in the app. While entering information, consult any tooltips for information specific to each field.
  2. Open the ‘AWS Access Keys’ section. Enter the ‘Access Key ID’ and ‘Secret Access Key’ exactly as shown when configuring the IAM user.
  3. Configure your WHOIS privacy defaults. WHOIS privacy protection is only available when the contact type is ‘Person’. Specific privacy features supported by Route53 are discussed here under ‘Privacy Protection for Contact information’ and in our Privacy Policy.
  4. Choose the duration in years for your domain registrations (some TLDs have specific max/min limits e.g. .AU domains are 2-years only)
  5. Open the ‘Registrant Contact Details’ section. Enter in the contact information that will be shown in the public whois records. This defines ownership of the domain for the term of registration. The ‘Contact Email’ must be contactable, since it will be verified as part of the registration process. Be sure to use the proper formatting (including period) for Telephone/Fax.
  6. Choose a Contact Type, as appropriate for your situation. You will be warned if your chosen contact type conflicts with your WHOIS privacy preferences.
  7. For some TLDs, extra parameters are required to establish eligibility for registration (e.g. AU_ID_NUMBER and AU_ID_TYPE for .AU domains). Open ‘Extra Parameters’ and enter the necessary details for your target TLD. Extra parameters are not required for .com, .net or .org TLDs. Use the tooltips to get more information about each parameter.
  8. Tap ‘Save’ to save all preferences, including your AWS credentials.
  9. You are now ready to use Domain Grabber! Test it out with the ‘Check Availability’ function.

Amazon Web Services, the “Powered by Amazon Web Services” logo, AWS, Route53, are trademarks of Amazon.com, Inc. or its affiliates in the United States and/or other countries.