[Opendnssec-user] Problem signing a zone
Casper Gielen
c.gielen at uvt.nl
Tue Jun 21 11:07:04 UTC 2011
Op 21-06-11 12:53, Casper Gielen schreef:
>
> With hindsight it may be the case that nothing is wrong and that it is a
> matter of a confusing message and lack of experience on my side.
I didn't finish this paragraph. I've being doing a few more experiments
and restarting the enforcer solves the problem.
- copy a zone (cp myzone.com myzone2.com)
- add it (ods-ksmutil zone add --zone myzone2.com)
- sign it (ods-signer sign myzone2.com) -> failure
- restart enforcer
- sign it (ods-signer sign myzone2.com) -> success
I was under the impression that restarting the enforcer should not be
necessary. The signer error message "Zone xxxxx config has errors." is
not optimal.
--
Casper Gielen <cgielen at uvt.nl> | LIS UNIX
PGP fingerprint = 16BD 2C9F 8156 C242 F981 63B8 2214 083C F80E 4AF7
Universiteit van Tilburg | Postbus 90153, 5000 LE
Warandelaan 2 | Telefoon 013 466 4100 | G 236 | http://www.uvt.nl
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
URL: <http://lists.opendnssec.org/pipermail/opendnssec-user/attachments/20110621/37b28914/attachment.bin>
More information about the Opendnssec-user
mailing list