Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.DCDN & DeliveryActionNo CDN detectedFIX
Consider using a CDN to improve global delivery speed and reduce origin load.
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BCrawlabilityno robots.txt, no sitemapREVIEW
robots.txt is optional but recommended. It tells search engine crawlers which pages to index.
No robots.txt — crawlers fetch /robots.txt and get 404; not breaking but means default crawl behavior with no directives or sitemap reference.
Learn more ▾ ▴
A minimal robots.txt with `User-agent: * / Allow: / / Sitemap: https://example.com/sitemap.xml` covers the basics. Without it, crawlers behave fine but lose the sitemap signal and can't be selectively blocked from crawl-traps.
Source: robotstxt.org
A sitemap helps search engines discover and index your pages more efficiently.
No sitemap.xml — Google relies on crawl-graph discovery alone, slowing indexing of deep or fresh URLs.
Learn more ▾ ▴
A sitemap accelerates Google's discovery of new and updated content. Most CMSes auto-generate one; static-site frameworks need a build-step plugin. Reference it from robots.txt and submit in Search Console to confirm Google can fetch it.
Source: sitemaps.org / Google Search Central
No robots.txt found
This is fine for most sites — a missing robots.txt allows all crawling by default.
No sitemap found
Adding a sitemap helps search engines discover your pages.
BTLS Certificate Expiry & Recommendations88 days until leaf cert expires — 2 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+DNS Records2 A records, 70 ms lookupPASS
| A | 23.21.189.113, 50.19.149.4 |
| AAAA | — |
| CNAME | — |
| NS | ns-226.awsdns-28.com, ns-1869.awsdns-41.co.uk, ns-528.awsdns-02.net, ns-1192.awsdns-21.org |
| MX | 10 autodesk-com.mail.protection.outlook.com |
| TXT | mindmanager-verification=f04ea036f597a25513f0084e81aa3f374e937e8f61c2de5f2e558d8... _rjjkvh580611fcu6f27y3wuml51967a docusign=3b85e379-88dd-467e-a926-0b63f700d89a klaviyo-site-verification=RWrttd _284fitmf93o9uelmwoap39uq0mxw693 MS=ms52640551 amazonses:gCVoT+HkTlqkIm9bUS6uCip7WVL1XLGZrL8vPpbbD6M= jamf-site-verification=_abBkJS4HhGTVZ9P0MWxSw pendo-domain-verification=jFA0JTLtOsRHaxA-7sVYff6CGq0 figma-domain-verification=d04074aaaa91b42986ba3722534b868fdafb4aaacc9c4a2db32cd3... amazonses:hqI2YaA1VTCGZCKQmKqbIlWnrNhiC11rawiD3vnPndE= docusign=c3af67fc-cb86-46f8-aa20-2a569f93ab63 google-site-verification=uCgeUEvMiJm_5XQBU7U1gpeWWCt_dPeHP5-qJAR5J_U anthropic-domain-verification-k6v4pq=tcPav53BzEmR5NHu8NYsOCZnL Dynatrace-site-verification=a5cc0a65-7337-4d4c-833f-0db26f221fe8__d6ofsm7mf05g09... docker-verification=fdf943db-8338-462a-b7a2-2b361e22c623 atlassian-domain-verification=zCINZs8ynX198gzzQDZ02M/5DcqmhdG2TM7vTNAMhvdMk7bayN... new-relic-domain-verification=3b20e79841b74731a8a3e8ef8bd7ca67 notion-domain-verification=zUjIrMVOHi9IR2fyWNDPIDkn4e8k5otXF7YpztoRPPu notion-domain-verification=NIYUJ7uRmwUmOtKj2cWo6HwJwG0Ws5c9LHvYqgmM6ae _avpnony9jsuu58gurpnwgsqjsazv5uv mgverify=b719aac06ac63d33f8f12a0e62cf5e3deb4c24b803797692c22f22e03d842111 onetrust-domain-verification=dc95f4e1bd634cf8a71d0d1418b7974d 0ed1fe018ac8907ee098ab4a9996fb6a694a71d206 SPF v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all _862istdbll8thzbdymp9okoobtic9xg amazonses:E/6xJ4tynhY62ui/+jD+QHR/HQWXFZ75MNdPiL1mKPA= smartsheet-site-validation=WuX3jbnGd8b4t-0gN1BtupGc9FnCPOXv miro-verification=d4cc8612cea1fc38878ab3d54f7ae84eec76e902 google-site-verification=v59WYL2UoBRz5RMCCPCii3FmcynOQhSCOsHNZ3Hlbcc openai-domain-verification=dv-j84v1z3mYrQkgoth0NcAkVVU google-site-verification=DHqJE-yOttplpf-zekDmZBkm1lqpHFI6e2t6pK9VUfs amazonses:UHWWrPkHGa9RiZY4fZGC7AjCWTAGpITyhGff6LOvwxc= mixpanel-domain-verify=6a925cc8-8e75-4292-90e2-5703139e9d20 ET/zqtV5IADbMh7oEbXtByAR83RHxzZ4+PNLcYtbof4= cursor-domain-verification-twqzj4=D8vMidwfAf7anpXXnhBhht0kk ppmNotification@autodesk.com. amazonses:VYeWOdptIY2/6n3EzNJnPRNq6P173RuGaExpP9f9zXA= fastly-domain-delegation-uyjcusvyhfsc9vcrhctc-00620137-2026-02-28 amazonses:qVLg6YiufD2WB/j9G39E2tziNlM5wC6GcbjyLdvhJWk= segment-site-verification=yB8SG73AB8Pv0Wjtf6MVhaVmFVZdkRd6 4iKTPDm0+Shu/4qFfIruePvbyciI4CFQqaAahs/ZZ4Q= _amazonses.autodesk.com:UHWWrPkHGa9RiZY4fZGC7AjCWTAGpITyhGff6LOvwxc= fastly-domain-delegation-725158-20231214 fastly-domain-delegation-zthvdpjdvivoohqf9xf4-422082-2025-06-10 google-gws-recovery-domain-verification=58257954 google-site-verification=EVo5PiVT937_53Gjv3F-SeVcKChVHqAsgTGN02T-eKE adobe-idp-site-verification=961cec59-006b-4970-ba36-a1228fe79858 bettercomp-verify=00f5c6aae6468267329dda03efda83585249b727e2d53660a8437341077c4b... parsec-domain-verification=td_2xffnY3yKHAKP5UeRSKaARUjMOb _rqparekbujoaqtknjj1m7sgvl46ra67 onetrust-domain-verification=77fd2a39783e407ea85853f1c0c91e96 canva-site-verification=GGBzWH5pPrqN-iNAUzvBug google-site-verification=pHHCfd_ZUuYkK74ILXrbrcTD-aciY-Zvj22_bbf1F8k _128pvial7atd6u3acbfb6zhlr8vqm9k _9hc7ktf9i4qcjn7p79o8mnm44s3etr3 mongodb-site-verification=46Fh23clAmaclrOjtmUqYQawj6SkMrMF teamviewer-sso-verification=80d3133b2e4c4863814a5e81b84ccde3 stripe-verification=93637E187AFCE01696DB714E362268A50CDC0C6EDADEF144A96261A5154D... adobe-idp-site-verification=8499618523c8635dc9d388d9291526d46e61b6d562daae599c22... kiro-site-verification=e4804015-16c5-48ad-98cb-cb8cb23d04bd openai-domain-verification=dv-80Mj3bq5urXG9J6QuJ6692GE zapier-domain-verification-challenge=7edfd3cd-e919-4dff-8974-556d94c60e2e |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
ARedirect Chain1 redirect(s), 342 ms totalPASS
https://autodesk.com
294 ms · HTTP/1.1
https://www.autodesk.com/
48 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://autodesk.com | 301 | 294 ms | HTTP/1.1 | nginx/1.28.2 |
| 2 | https://www.autodesk.com/ | 403 | 48 ms | HTTP/1.1 | AkamaiGHost |
See the visual redirect chain in the HTTP Probe tab →
A+URL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
HTTP → HTTPS
Consistent
A+Domain Intelligenceautodesk.com — via CSC Corporate Domains, Inc., 37 years, 2 months old, hosted on AWSPASS
2942 days
August 2, 2034
88 days
Issued by Amazon
37 years, 2 months
Registered August 3, 1989
Enabled
Protects against DNS spoofing
AWS
ASN AS14618
50.19.149.4
CSC Corporate Domains, Inc.
Expiry timeline
Recommended actions
- Enable registrar lock (clientTransferProhibited) to block unauthorized domain transfers
The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.
Without registrar lock, an attacker who phishes your registrar credentials can transfer the domain in minutes — total brand hijack.
Learn more ▾ ▴
Registrar lock (clientTransferProhibited, clientUpdateProhibited, clientDeleteProhibited) requires extra verification before any transfer/update/delete. Every major registrar offers it free. Combined with 2FA on your registrar account, it's the strongest defense against domain hijacking.
Source: ICANN / domain-security best practice