[Opendnssec-user] What should happen when you change the policy for a zone
Sion Lloyd
sion at nominet.org.uk
Tue Feb 1 11:52:24 UTC 2011
> > I suspect that it is stopping the roll because there are no ready keys on
> > the new policy, but not promoting any keys because there is a ready key
> > on the zone... In other words it might be a consequence of the state of
> > keys on the zone at the time that you changed the policy.
I can see why attempting manual rollover will not work; it fails if the policy
of the zone is different to the policy of the key. I will fix this as soon as I
am sure that my fix doesn't break anything else.
Sion
More information about the Opendnssec-user
mailing list