This article describes how to configure First-Party Domains for Tealium server-side data collection.
For server-side data collection, the domain certificates are configured and stored in the Tealium endpoint in the region you select during configuration. If the selected region is different from the region for the profile, the event and visitor data is collected in the first-party domain region and forwarded to the region configured for the profile.
Use the following steps to First-Party Domains for Tealium server-side data collection:
In the admin menu, click First-Party Domains.
Under Server-Side Data Collection/DLE, click Configure Certificate.
Select the region in which most of your Collect traffic occurs.
Select one of the following:
Generate Certificate – Tealium generates and manages the certificates.
Provide Certificate – Provide your own certificate files. For information about the requirements and format for certificate files, see Provide your own domain certificates.
If you selected Provide Certificate, upload the following files:
Certificate (required)
Private Key (required)
Certificate Chain (optional)
Select one of the following methods to validate domain ownership:
DNS Validation
Email Validation
In the Add Domains section, enter a subdomain name, omitting https:// and the ending slash.
For example, collect.example.com or cdp.example.com.
To add another domain, click + Add Domain.
First-party domains apply to all profiles in your account. Enter a subdomain for each site managed by this account.
Click I Agree to give Tealium permission to manage certificates for the provided domains and to certify you own and manage these domains, then click Save.
DNS validation – Temporary A records (one for each domain) that are used for validation are displayed: Add these temporary A records to your DNS configuration.
Email validation – The following message is displayed:
Complete the process for your validation method, as follows:
DNS validation: After you have added the validation A records to your DNS configuration and the validation process is completed (this can take several hours), the permanent A records for your domains are displayed. Add these permanent A records to your DNS configuration.
Your DNS configuration must include the validation A records and the permanent A records. The validation records are used when you add domains to a certificate and for auto-renewal of the certificate.
Email validation: You will receive email from Amazon Web Services (one message for each domain) containing a validation token that expires in 72 hours. To complete the validation process, you must respond to the email message for each domain.
If you did not receive the email or if the token has expired, in the Server-Side menu on the First-Party Domains Overview screen, click Resend Email.
Validation Confirmation
Domain validation must occur within 72 hours. If the validation period expires, request a new certificate for the same domain. The DNS validation records are the same for subsequent requests of the same domain.
The following message is displayed while your domain information is being validated:
Please wait while domain information is validated. This won't take long.
When the domain status in the First-Party Domains Overview is changed to Issued, your domains are ready to use. After the domain status is changed to Issued, you need to update your endpoint configuration to use first-party domains with Tealium Collect. For more information, see Update endpoint configurations.
