Configure subdomain with CNAME DNS record (AMP)

Certain browser environments restrict the use of 1st party cookies (e.g. Safari's ITP) and limit our ability to persist user consent records for a longer period of time. In order to side step the restrictions you have the option to set cookies through the server rather than having to rely on document.cookie. This is true for our AMP and website implementations. To accomplish this, you need to set up a CNAME DNS record for a 1st party subdomain and include it in the AMP or website's configuration snippet.

If you already have a CNAME record pointing to either the mms.sp-prod.net or message.sp-prod.net, Sourcepoint recommends setting up a new subdomain to make the transition to the new single name CNAME solution easier.

There are two ways to set up the CNAME record for your AMP implementations. The difference between the two methods depends on whether Sourcepoint is setting up the TLS certificates for https traffic or whether you are setting up your own TLS certificates and provide Sourcepoint with the details.

In order to reduce the risk of being identified by block lists, Sourcepoint recommends that your organization avoids using cmp or privacy in your subdomains (e.g. cmp.domain or privacy.domain).

Instead, consider using the following or a variation of the following: consent.domain or cmpv2.domain.

1. Sourcepoint Sets Up the TLS Certificate‌

  1. Set up a 1st party subdomain and create a CNAME record pointing to cert.privacy-mgmt.com.

  2. Notify Sourcepoint that the CNAME record has been set up.

  3. Sourcepoint establishes a TLS certificate for the cname record.

  4. Sourcepoint then creates an account specific CDN endpoint. If the account ID is 222 then Sourcepoint sets up the subdomain of cdn-222.privacy-mgmt.com.

  5. Sourcepoint then notifies you that the CDN endpoint has been set up.

  6. Finally, update the CNAME record to point to the new Sourcepoint CDN endpoint. In our example, this is cdn-222.privacy-mgmt.com.

2. The Site Sets Up The TLS Certificate

  1. Set up a 1st party subdomain and inform Sourcepoint that you want to use your own TLS certificate.

  2. Sourcepoint provides you with the CSR file for the subdomain TLS cert application.

  3. Apply the certificates and send the certificate back to Sourcepoint.

  4. Sourcepoint tests and verifies the certificate.

  5. Sourcepoint deploys the certificate.

  6. Sourcepoint then creates an account specific CDN endpoint. If the account ID is 222 then Sourcepoint sets up the CDN endpoint of cdn-222.privacy-mgmt.com.

  7. The site then updates the CNAME record to point to the new Sourcepoint CDN endpoint. In our example, this is cdn-222.privacy-mgmt.com.‌

The subdomain for which the CNAME record was created is referenced in the parameters for the AMP configuration snippets.