DNSSEC Trust Anchors - BlueCat Integrity - 26.1.0

Address Manager Administration Guide
ft:locale
en-US
Product name
BlueCat Integrity
Version
26.1.0

How to set the DNSSEC Trust Anchors deployment option.

The DNSSEC Trust Anchors deployment option provides the public keys for trusted zones. Use this option to create DNSSEC trust anchors that will be used when the DNSSEC Validation deployment option is set to True. This option is set at the server level. When setting DNSSEC trust anchors, you will need the KSKs for the trusted zones from the zone administrators.

To set the DNSSEC Trust Anchors deployment option:

  1. Select the Servers tab in the sidebar, then select Servers.
  2. Select the name of a server from the Servers table.
  3. Select the Deployment options tab.
  4. Select New > DNS option.
  5. Under General, set the following parameters:
    • Name—select DNSSEC Trust Anchors.
    • FQDN—enter the fully-qualified domain name for the zone.
    • Key—paste the KSK provided by the trusted zone’s administrator.
    Then, select the add icon (+) to add the zone and key to the list. Repeat this process to add more DNS zones and keys.
    To remove a DNS zone and key entry from the list, select the remove icon (x) for the zone and key entry.
  6. In the Change control section, add comments if required.
  7. Select Create.