[Opendnssec-develop] Manual resigning
Rick Zijlker
rick.zijlker at sidn.nl
Thu Jul 15 10:42:48 UTC 2010
Hey all,
We are testing a scenario where resigning is done manually. So every time a new zone has been created we run "ods-signer sign zone". We set "resign" in our kasp.xml to P10Y. This way we want to ensure the signing starts directly after the new zone has been generated and put in place.
One thing bothers us though. Apparently we need the enforcer to run in order to initiate the rollover. But even though we have a P10Y resign set, the enforcer initiated a signing of the zone. Logging is enclosed in the attachment.
Is there any way to avoid the Enforcer to initiate signing of zones?
Cheers,
Rick
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20100715/8d75952f/attachment.htm>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: C1T1_testrun_1.txt
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20100715/8d75952f/attachment.txt>
More information about the Opendnssec-develop
mailing list