Knowledge base

Mobile app & onboarding · updated 11 May 2020 · reviewed 9 July 2026

Onboarding with QR code fails with "Service domain could not be verified"

Configure the authentication domain so QR codes generated by the management dashboard verify correctly.

To onboard users with QR code you should configure the authentication domain with:

ntk cfg setc :auth_domain https://2fa.example.com

where 2fa.example.com is your Notakey Authentication Server API FQDN — or else an automatically detected fallback domain may be used incorrectly for QR codes copied from the management dashboard.

If you have configured an SRV record for your domain (_notakey2._tcp.example.com), configure the authentication domain as:

ntk cfg setc :auth_domain example.com

Note that the authentication server service has to be restarted after changes with ntk as restart.

← Back to support

See your first passwordless login this week

A 30-minute call with an engineer, not a sales deck. We’ll map your VPN, SSO or Windows setup to a working pilot.