[Opendnssec-user] no softhsm whining
randy at psg.com
Wed Jun 11 00:45:19 UTC 2014
>> all ds are seen. repository is flagged. i am still not asked to back
>> keys up.
>> <Repository name="SoftHSM">
> Are the keys generated after the update to the policy? Changes to the
> policy only applies to keys generated after the change.
some KSKs were generated after the policy change, and sent to parent,
and ds seen done. ZSKs are whacked frequently.
> Could it be that the message is not logged because the ZSK is generated in
> the same repository as the KSK? See the if-statement in:
is this a change? i.e. "it used to work!" :)
More information about the Opendnssec-user