All SafeBase customers can set up a Custom URL. This gives our customers a public-facing URL for their Trust Center. All Custom URLs are provided with WAF protection and additional security coverage.

Custom URLs must follow the naming convention of prefix.company.domain e.g. :

Please see SafeBase's Custom URL for an example.

If you do not specify CAs, you can skip this section.

Cloudflare deploys SSL certificates via “Google Trust Services (GTS)”.
If you specify CAs in your environment, please add GTS to your CAA record:

Your custom Trust Center URL must match one of the domains on your SafeBase organization. You can see these domains in Settings -> Organization Settings -> Domains. Most organizations will only have one domain, which will be the company's main corporate domain, e.g. company.com. This domain will also control who can be invited as an organization member and log into your organization.

In some cases, companies will have multiple domains for different purposes (e.g. one for marketing and one for internal email, or one for public branding and one for API services). If you wish to create your custom URL on a domain other than the original primary domain of your organization, please reach out to Support and provide each of the verified domains you own and want added.
​

Please be aware that SafeBase supports only one primary custom domain per Trust Center. For any additional domains, you can implement DNS redirects to the main custom URL to ensure seamless access for visitors.

Once you have decided on your Custom URL (e.g. trust.company.com), navigate to the Trust Center URL section of SafeBase's Settings and input the subdomain that you would like to use as your Custom URL:
​

Double-check your URL before clicking Submit.

After clicking Submit, you will be provided with CNAME DNS record and it's corresponding value:
​

Please add this CNAME record to your subdomain's DNS provider.

For example:

Once the CNAME has been added, check the status by clicking Refresh
​

After the values are validated, a button will appear to publish your Trust Center:
​

Click Publish Trust Center when you are ready for your Trust Center to be public.

For organizations that would like to re-use an existing Trust Center Custom URL when migrating from another platform, this is 100% possible and requires only a few steps.

The only thing separating a custom URL (e.g. trust.company.com) from pointing to SafeBase vs. a different Trust Center is the value that the DNS CNAME points to.

All steps above are required.

Set things up in SafeBase first.

Alternatively, some customers wish to retain separate URLs on Drata or another provider, and publish their SafeBase Trust Center at a new URL. These customers may want to the legacy URL to seamlessly point to the SafeBase URL.

If you plan to manage multiple domain names (e.g. retain a Drata Trust Center URL such as security.company.com and publish a new SafeBase Trust Center URL such as trust.company.com), you may configure DNS redirects (usually a 301 permanent redirect) from those domains to lead visitors to the primary domain configured with SafeBase. In this way, any published materials with the old URL do not need to be changed.

In SafeBase, go to Settings -> Organization Settings and validate the domain(s) in the Domains box. Then, compare this to the initial value in Settings -> Trust Center URL -> Your subdomain.

This default value is populated when your organization was created by SafeBase. If you would like an alternate domain, please do not submit and reach out to our Support team first. Provide the updated domain your prefer for your Custom URL.

If an organization MUST proxy this URL behind a service such as CloudFront, they most likely will run into errors when the origin server does not respond.
​
In these scenarios, there may be a requirement to pass a Host header with the custom URL as the value so that SafeBase can serve the correct page.

Please reach out to Support with any questions or concerns.