DNS/DHCP Management Console

DNS Key

DNS server supports secure updates and secure queries using TSIG-key mechanisms.

The DNS Key Management role consists of tasks that allow you to create, modify, and delete DNS Key objects.
DNS Key provides a means of authentication for dynamic DNS updates and for secured queries to a DNS Server. DNS Key uses shared secret keys as a cryptographically secure means of authenticating a DNS update/query.

Example: dnssec-keygen -v
Usage:
dnssec-keygen -a alg -b bits -n type [options] name
Version: 9.3.4
Required options:
-a algorithm: RSA | RSAMD5 | DH | DSA | RSASHA1 | HMAC-MD5
-b key size, in bits:
RSAMD5: [512..4096]
RSASHA1: [512..4096]
DH: [128..4096]
DSA: [512..1024] and divisible by 64
HMAC-MD5: [1..512]
-n nametype: ZONE | HOST | ENTITY | USER | OTHER
name: owner of the key

Note: DNS Key option is supported for Linux DNS only.


Help Topics

For information on copyright, see Legal Notices.