Re: Inline signing fails dnsviz test.

Dan Egli via bind-users Mon, 10 May 2021 14:37:47 -0700

Okay, so I added the policy, and things MOSTLY look okay. But when I retake the verification test, I get errors about no RRSIGs found. What do I do to resolve that issue?


On 5/10/2021 12:38 PM, Tony Finch wrote:

Dan Egli <d...@newideatest.site> wrote:

Still not working for me. The dig doesn't report anything, and I don't HAVE a
keyfile since i'm using inline signing. Or does inline signing still require a
key to be generated?

Yes, you need to do your own key management with inline-signing using
dnssec-keygen. The new dnssec-policy feature can do automatic key
management for you.


Tony.


--
Dan Egli
From my Test Server

OpenPGP_0x11B7451DF2015959.asc
Description: OpenPGP public key

OpenPGP_signature
Description: OpenPGP digital signature

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

ISC funds the development of this software with paid support subscriptions. 
Contact us at https://www.isc.org/contact/ for more information.


bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Inline signing fails dnsviz test.

Reply via email to