Is it possible to do In-line Signing for local root zone

Mundile Sun, 12 Apr 2020 05:08:45 -0700

I have local (private) root domain domainX.example and subdomains : 
subdomainY.domainX.example and subdomainZ.domainX.example. I can do chain of 
trust if all zones are In-line signed
zone "domainX.example" {
        type master;
        file "named.domainX.example";
        key-directory "/var/named/keys/zones";
        auto-dnssec maintain;
        inline-signing yes;
    };
zone "subdomainY.domainX.example" {
        type master;
        file "named.subdomainY.domainX.example";
        key-directory "/var/named/keys/zones";
        auto-dnssec maintain;
        inline-signing yes;
    };
zone "subdomainZ.domainX.example" {
        type master;
        file "named.subdomainZ.domainX.example";
        key-directory "/var/named/keys/zones";
        auto-dnssec maintain;
        inline-signing yes;
    };
Or  domainX.example MUST be manually assigned.


Sent from Mail for Windows 10

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
[email protected]
https://lists.isc.org/mailman/listinfo/bind-users

Is it possible to do In-line Signing for local root zone

Reply via email to