On 28 February 2012 12:46, Ondřej Surý <[email protected]> wrote: > Can you show us the config? (Minus sensitive information like PIN.)
here you are. But it doens't matter, the default config gives the same error. It if makes any difference, my system is an Ubuntu 10.04 LTS 64 bit. -- Dick Visser System & Networking Engineer TERENA Secretariat Singel 468 D, 1017 AW Amsterdam The Netherlands
<?xml version="1.0" encoding="UTF-8"?> <Configuration> <RepositoryList> <Repository name="SoftHSM-KSK"> <Module>/usr/lib/softhsm/libsofthsm.so</Module> <TokenLabel>KSK</TokenLabel> <PIN>xxxx</PIN> <SkipPublicKey/> </Repository> <Repository name="SoftHSM-ZSK"> <Module>/usr/lib/softhsm/libsofthsm.so</Module> <TokenLabel>ZSK</TokenLabel> <PIN>xxxx</PIN> <SkipPublicKey/> </Repository> <!-- <Repository name="sca6000"> <Module>/usr/lib/libpkcs11.so</Module> <TokenLabel>Sun Metaslot</TokenLabel> <PIN>test:1234</PIN> <Capacity>255</Capacity> <RequireBackup/> <SkipPublicKey/> </Repository> --> </RepositoryList> <Common> <Logging> <!-- Command line verbosity will overwrite configure file --> <Verbosity>9</Verbosity> <Syslog><Facility>local0</Facility></Syslog> </Logging> <PolicyFile>/etc/opendnssec/kasp.xml</PolicyFile> <ZoneListFile>/etc/opendnssec/zonelist.xml</ZoneListFile> <!-- <ZoneFetchFile>/etc/opendnssec/zonefetch.xml</ZoneFetchFile> --> </Common> <Enforcer> <!-- <Privileges> <User>opendnssec</User> <Group>opendnssec</Group> </Privileges> --> <Datastore><SQLite>/var/lib/opendnssec/db/kasp.db</SQLite></Datastore> <Interval>PT360S</Interval> <!-- <ManualKeyGeneration/> --> <!-- <RolloverNotification>P14D</RolloverNotification> --> <!-- the <DelegationSignerSubmitCommand> will get all current DNSKEYs (as a RRset) on standard input --> <!-- <DelegationSignerSubmitCommand>/usr/sbin/eppclient</DelegationSignerSubmitCommand> --> </Enforcer> <Signer> <!-- <Privileges> <User>opendnssec</User> <Group>opendnssec</Group> </Privileges> --> <WorkingDirectory>/var/lib/opendnssec/tmp</WorkingDirectory> <WorkerThreads>1</WorkerThreads> <SignerThreads>1</SignerThreads> <!-- the <NotifyCommmand> will expand the following variables: %zone the name of the zone that was signed %zonefile the filename of the signed zone --> <!-- <NotifyCommand>/usr/local/bin/my_nameserver_reload_command</NotifyCommand> --> <NotifyCommand>/usr/sbin/rndc reload %zone</NotifyCommand> </Signer> <Auditor> <Privileges> <User>opendnssec</User> <Group>opendnssec</Group> </Privileges> <WorkingDirectory>/var/lib/opendnssec/tmp</WorkingDirectory> </Auditor> </Configuration>
_______________________________________________ Opendnssec-user mailing list [email protected] https://lists.opendnssec.org/mailman/listinfo/opendnssec-user
