App Registration in Azure URL/DNS record

Question

Hi, I have recently permanently deleted an App Registration from my Azure tenant. However the DNS record for the URL is still showing if I search on something like mxtoolbox.com. How do I go about deleting that dns record which was originally the home page url.

Thanks

Answer 1

Hi Ayaz Ahmad,
Thanks for reaching out! This is a common situation. Deleting an App Registration in Azure AD only removes the application's identity within Azure; it doesn't automatically handle any associated DNS records. DNS is managed separately.

Here's a breakdown of how to remove the lingering DNS record, and the reasoning behind each step:

1. Identify Your DNS Host:

The first step is to determine where your domain's DNS records are managed. This is not necessarily within Azure, even though the App Registration was. The most likely possibilities are:

• Domain Registrar (Most Common): Companies like GoDaddy, Namecheap, Google Domains, etc., where you originally registered your domain name, often manage DNS by default. You'll need to log in to their control panel.
• Azure DNS: If you've explicitly configured your domain to use Azure DNS, you'll manage the records within the Azure portal (under "DNS zones").
• Web Hosting Provider: Sometimes, your web hosting provider (if different from your registrar) might be handling your DNS. This is less common, but worth checking.
• How to Confirm: A reliable way to check is to look up your domain's NS (nameserver) records. You can use a tool like MXToolbox, whois, or the command-line dig or nslookup. The NS records will show you which servers are authoritative for your domain.

2. Locate the Specific DNS Record:

Once you've logged in to the correct DNS management interface (registrar, Azure, or hosting provider), you need to find the precise record that corresponds to the old App Registration's URL. Look for these details:

• Record Type: The record will likely be one of these:
  • A Record: Maps a hostname directly to an IPv4 address.
    • AAAA Record: Maps a hostname directly to an IPv6 address.
      • CNAME Record: Creates an alias, pointing your hostname to another hostname (which then has its own A or AAAA record). This is common with Azure services that provide a canonical name.
      • Hostname (Record Name): This is the part of the URL before your main domain. It could be:
        • @: Represents the root domain (e.g., example.com).
          • www: The common www subdomain (e.g., www.example.com).
            • A custom subdomain: Like app.example.com, api.example.com, etc. This is highly likely if the App Registration was tied to a specific subdomain.
            • Record Value (Target/Data): This is the information the record points to.
              • A record: The IPv4 address.
                • AAAA record: The IPv6 address.
                  • CNAME record: The other hostname.

3. Delete the DNS Record:

• Once you've positively identified the correct record, simply delete it. Most DNS management interfaces provide a clear "Delete," "Remove," or trash can icon.
• Important: Be absolutely certain this record is no longer needed before deleting it. If you're unsure, consult with someone who has more experience with your domain's configuration.
• It's very unusual that you need to modify instead of deleting.

4. Understand DNS Propagation:

• After deleting the record, it will not disappear immediately. DNS changes take time to propagate across the internet.
• TTL (Time-to-Live): Each DNS record has a TTL value (in seconds) that determines how long DNS servers should cache the information.
• Typical Propagation: While the TTL might be short (e.g., 300 seconds), it can take anywhere from a few minutes to 24-48 hours for the change to be fully reflected globally. This is due to caching by numerous DNS servers worldwide. Thanks for reaching out! This is a common situation. Deleting an App Registration in Azure AD only removes the application's identity within Azure; it doesn't automatically handle any associated DNS records. DNS is managed separately. Here's a breakdown of how to remove the lingering DNS record, and the reasoning behind each step: 1. Identify Your DNS Host: The first step is to determine where your domain's DNS records are managed. This is not necessarily within Azure, even though the App Registration was. The most likely possibilities are:
  • Domain Registrar (Most Common): Companies like GoDaddy, Namecheap, Google Domains, etc., where you originally registered your domain name, often manage DNS by default. You'll need to log in to their control panel.
  • Azure DNS: If you've explicitly configured your domain to use Azure DNS, you'll manage the records within the Azure portal (under "DNS zones").
  • Web Hosting Provider: Sometimes, your web hosting provider (if different from your registrar) might be handling your DNS. This is less common, but worth checking.
  • How to Confirm: A reliable way to check is to look up your domain's NS (nameserver) records. You can use a tool like MXToolbox, whois, or the command-line dig or nslookup. The NS records will show you which servers are authoritative for your domain.

2. Locate the Specific DNS Record:

Once you've logged in to the correct DNS management interface (registrar, Azure, or hosting provider), you need to find the precise record that corresponds to the old App Registration's URL. Look for these details:

• Record Type: The record will likely be one of these:
  • A Record: Maps a hostname directly to an IPv4 address.
    • AAAA Record: Maps a hostname directly to an IPv6 address.
      • CNAME Record: Creates an alias, pointing your hostname to another hostname (which then has its own A or AAAA record). This is common with Azure services that provide a canonical name.
      • Hostname (Record Name): This is the part of the URL before your main domain. It could be:
        • @: Represents the root domain (e.g., example.com).
          • www: The common www subdomain (e.g., www.example.com).
            • A custom subdomain: Like app.example.com, api.example.com, etc. This is highly likely if the App Registration was tied to a specific subdomain.
            • Record Value (Target/Data): This is the information the record points to.
              • A record: The IPv4 address.
                • AAAA record: The IPv6 address.
                  • CNAME record: The other hostname.

3. Delete the DNS Record:

• Once you've positively identified the correct record, simply delete it. Most DNS management interfaces provide a clear "Delete," "Remove," or trash can icon.
• Important: Be absolutely certain this record is no longer needed before deleting it. If you're unsure, consult with someone who has more experience with your domain's configuration.
• It's very unusual that you need to modify instead of deleting.

4. Understand DNS Propagation:

• After deleting the record, it will not disappear immediately. DNS changes take time to propagate across the internet.
• TTL (Time-to-Live): Each DNS record has a TTL value (in seconds) that determines how long DNS servers should cache the information.
• Typical Propagation: While the TTL might be short (e.g., 300 seconds), it can take anywhere from a few minutes to 24-48 hours for the change to be fully reflected globally. This is due to caching by numerous DNS servers worldwide.

PS: if it did help please press on the accept answer button=) if you have any other questing feel free to ask!

Answer 2

Hello Ayaz, To delete a DNS record in Azure, sign in to the Azure portal, navigate to the DNS zones, find the record set, and delete it. For domains hosted in Azure DNS or FQDNs created by Azure App Service, there may not be a direct connection with the App Registration. However, you should ensure that any related DNS entries are removed. Additional references:

• https://learn.microsoft.com/en-us/azure/dns/dns-operations-dnszones-portal
• https://learn.microsoft.com/en-us/azure/dns/dns-operations-recordsets-portal

If the information helped address your question, please Accept the answer.

Luis