Constants and system limitations in the EPP system

Here we present some constants and explanations of some restrictions in the EPP registry system. The EPP system offers an EPP interface to the registrars.

  EPP interface/EPP sessions
System constants Comments
1200, 900, 300

Maximum number of commands within the same EPP session.

A session will be disconnected by the EPP server if the number of EPP operations within a session reaches 1200.
This is done by the EPP server for resource and robustness reasons.

In practice, this picture is somewhat more complicated because the disconnect may take place earlier as well, and already at 900 operations. An EPP session is handled by an Apache thread. The system is designed so that a thread can be reused if it has processed less than 300 operations. Thus, a new session may risk getting an already used thread which has handled 300 operations, and thus only have 900 to go before it reaches the maximum number of 1200.

120

Timeout period in seconds for an inactive session.

A session will be disconnected by the EPP server if it has been idle for 120 seconds.
This is done by the EPP server for resource and robustness reasons.

0, 9

0: Minimum number of active EPP-sessions per registrar account.

9: Maximum number of active EPP-sessions per registrar account.

Default is 1.

  EPP interface/EPP system
System constants Comments
21

Timeout period in days for service messages in the EPP message queue

A registrar is expected to poll his message queue regularly. Messages that have not polled within 21 days are automatically acknowledged by the EPP system.
This is done by the EPP server to prevent large queues, and because it is assumed that the registrar is not interested in or need for the messages.

4

Maximum number of IP addresses for a name server

1

Maximum number of technical contacts for a name server

2, 8

2: Minimum number of name servers for a delegation (from regulatory requirements).

8: The maximum number of name servers for a delegation

0

Maximum number of legal (admin) contacts for a delegation

20

Maximum number of technical contacts for a delegation

0

Maximum number of contacts linked to a role object

0

Maximum number of organizations a person or role contact may be linked to.

8

Maximum number of additional (secondary) email addresses that can be added to a contact object.

30

Number of days a one time password is valid.

A one time password (token) can be ordered by a new registrar if the subscriber requests the transfer of his delegation, but does not know authInfo.

31, 12

Renewal of delegations:

  • 31: Maximum number of days before the expiration date where a renewal of a delegation can be performed.
  • 12: Default value for renewal, in months. Set by the EPP system if the renewal period is not explicitly specified in the EPP renew command.

See instructions for renewal for more information.

60, 90, 30

Default values for ‘ordered-delete’ deletion processes.

An ‘ordered-delete’ delete process is started when a regular EPP delete command is received. The default values are used by the EPP system if deletion dates are not explicitly specified in the EPP delete command.

Times are in days:

  • 60: Time in days from reception of an EPP delete command and till the delegation enters quarantine, eg. is removed from DNS.
  • 90: Time in days from reception of an EPP delete command and till the delegation is removed from the database.
  • 30: Time in days which the domain name is blocked for re-registration, counted from the quarantine day.

See instructions for deletion for more information.

0, 14, 30, 60, 90

Default values for ‘expiry’ deletion processes.

An ‘expiry’ process is started automatically by the EPP system if a delegation has not been renewed before it’s expiry date.

Times are in days:

  • 0 : Time in days from the start of the ‘expiry’ process and till the first notification about the deletion is sent by email.
  • 14: Time in days from the start of the ‘expiry’ process and till the second notification about the deletion is sent by email.
  • 30: Time in days from the start of the ‘expiry’ process and till a notification about the deletion is sent by letter.
  • 60: Time in days from the start of the ‘expiry’ process and till the delegation enters quarantine, eg. is removed from DNS.
  • 90: Time in days from the start of the ‘expiry’ process and till the delegation is removed from the database.

See instructions for renewal for more information.

Also see the instructions for deletion of a domain which has not been renewed within its expiry date.

0, 30, 60, 90

Default values for ‘invalid-registrant’ deletion processes.

An ‘invalid-registrant’ process can be started by the EPP system if the organization that subscribes to a delegation is no longer registered in Brønnøysund. According to the regulations, the basis for the subscription is no longer valid.

Times are in days:

  • 0 : Time in days from the start of the ‘invalid-registrant’ process and till the first notification about the deletion is sent by email.
  • 30: Time in days from the start of the ‘invalid-registrant’ process and till a notification about the deletion is sent by letter.
  • 60: Time in days from the start of the ‘invalid-registrant’ process and till the delegation enters quarantine, eg. is removed from DNS.
  • 90: Time in days from the start of the ‘invalid-registrant’ process and till the delegation is removed from the database.

2.0, 2012-08-21

90

Default values for electronic applicant declarations.

  • 2.0: Version which is valid for an electronic applicant declaration.

  • 2012-08-21: Version 2.0 is valid from this date.

  • 90: Maximum age in days for ‘acceptDate’ for an electronic applicant declaration.
    An electronic applicant declaration must be sent to the registry within 90 days after the electronic declaration has been made. If the accept date is older, the registry system will reject the EPP transaction. A new declaration must then be collected.

6

Maximum number of DNSSEC DS records

3: DSA/SHA1
5: RSA/SHA1
6: DSA-NSEC3-SHA1
7: RSASHA1-NSEC3-SHA1
8: RSA/SHA256
10: RSA/SHA512
12: ECC-GOST
13: ECDSAP256SHA256
14: ECDSAP384SHA384

Permitted DNSSEC algorithms

1: SHA-1
2: SHA-256
3: GOST R34.11-94
4: SHA-384

Permitted DNSSEC DS digest types

  EPP system, syntactic rules
System constants Comments
16

Maximum number of characters in an object ID (handle).

2, 20, 64, 255

Limitations in the name and address fields for contacts:

  • 2 : Country Code
  • 20: Zip Code
  • 64: City
  • 255: Address
  • 255: Name
9, 15

Restrictions on the lengths of identities for contacts:

  • 9: organization number in Brønnøysund
  • 15 : Local id (N.xxx.123456789 , where xxx is LEG, ORG, REG or PRI)
8, 16

Number of characters in the authentication code (authInfo), EPP password and user password:

  • 8: Minimum number of characters
  • 16: Maximum number of characters

See the instructions for authentication code for information about valid characters and other information.

2, 20

Limitations in user names:

  • 2 : Minimum number of characters
  • 20: Maximum number of characters

In addition, user names must consist only of the characters ‘a-z’and ‘0-9’

Last updated 5 August 2019