We value your privacy

We use cookies to personalize your use of our site. This includes third-party cookies for that we use for advertising and site analytics. See our Privacy Statement and Cookie Policy for more information on how we collect and use data.

Cookie Options
OK
Knowledge Center

Keys

TSIG (Transfer Signature) keys limit what hosts are allowed to synchronize zone files from the primary server. This page displays the keys currently used by DNS Server.

To create a new key:

  1. Click Create.
  2. Select Create key.
  3. Enter a key name and select an algorithm. DNS Server supports HMAC-MD5 and HMAC-SHA512 keys.
  4. Click OK to save and create the key.

To export a key:

Keys can be exported to the local computer.

  1. Select the key that you want to export.
  2. Click Export key.

To import a key:

Keys can be imported from the local computer and added to the list of usable keys.

  1. Click Create.
  2. Select Import key.
  3. Choose a key file on the local computer and click OK.

To delete a key:

  1. Select the key you want to delete.
  2. Click Delete.

Key Naming Rules:

Key names can include 63 Unicode characters, including letters, numbers, and the following symbols: dashes (-), underscores (_), and dots (.). The name "rndc-key" is reserved for system use.

Key File Format Rules:

Key files must adhere to the following rules:

  • Implement the key statement format of Bind9.
  • Have a name according to the rules stated above.
  • Use HMAC-MD5 or HMAC-SHA512 encryption algorithms.