[Opendnssec-user] Signature failed to cryptographically verify

Matthijs Mekking matthijs at nlnetlabs.nl
Tue Jun 3 08:17:03 UTC 2014

Hi Gilles,

On 02-06-14 11:56, Gilles Massen wrote:
> And does OpenDNSSEC has by any chance a rough tool to create a sig
> with a given key referenced by the kasp.db?

Roughly: you should be able to run ods-signerd with a single run and a
specific config file:

1. Create a new conf.xml, probably using some different file locations.
2. Make a signer configuration file signconf.xml for a zone, referencing
the specific locator of the key.
3. Run 'ods-signerd -c conf.xml -1' (different cfg, single run)

Best regards,

More information about the Opendnssec-user mailing list