On 2018-08-23 14:15, Grant Taylor via bind-users wrote:
On 08/23/2018 01:20 PM, Barry S. Finkel wrote:
Somehow, under the covers, AD synchronizes the zones so that they have
the same content.
It's my understanding that MS-DNS servers hosting AD Integrated zones
are actually functioning as
Hi Tony,
Thanks for your answer!
Op 23-08-18 om 18:40 schreef Tony Finch:
> Paul van der Vlis wrote:
>>
>> Is it possible to sign the ZSK key permanently with the KSK key?
>> In this way I could keep the KSK key offline.
>
> The only(*) revocation mechanisms in DNSSEC are expiring signatures
2 matches
Mail list logo
