[Opendnssec-user] Not enough keys to satisfy zsk policy for zone

Yuri Schaeffer yuri at nlnetlabs.nl
Thu Dec 21 13:26:16 UTC 2017


Hoda noticed this:

> ods-enforcerd: [ID 630891 local0.info] NOTE: keys generated in repository
> SoftHSM will not become active until they have been backed up

We think you have <RequireBackup/> in your conf but did not indicate to
OpenDNSSEC that you actually backed them up. Therefore it isn't allowed
to use the keys.

So try backing up your keys or stop requiring it.

//Yuri

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: OpenPGP digital signature
URL: <http://lists.opendnssec.org/pipermail/opendnssec-user/attachments/20171221/22c24e93/attachment.bin>


More information about the Opendnssec-user mailing list