Skip to end of metadata
Go to start of metadata

How the site is organised

  • Overview: There is an Overview of OpenDNSSEC section with high level descriptions of how OpenDNSSEC works, diagrams of workflows and common activities.
  • Documentation: The other pages on this wiki site server as a detailed reference manual describing installing, configuring and running OpenDNSSEC.
  • Reference: The Reference Material section includes highly recommended in depth training material and user contributed presentations on existing deployments of OpenDNSSEC.
  • Resources: Resources such as FAQ and reporting BUGS are also available. There is also a user mailing list.


Once installed and configured OpenDNSSEC will automate key management and zone signing activities.


Read an overview of how OpenDNSSEC works. This details the components, diagrams of workflows and common activities.

Hardware Security Modules

Read about HSM and the OpenDNSSEC implementation of a soft HSM - SoftHSM.



Describes how you install OpenDNSSEC from source. It also gives some hints on how you can choose your hardware set-up to match your zone signing requirements.


The next step after installation is to configure OpenDNSSEC. Remember that you also need an HSM with the PKCS#11 API.

Running OpenDNSSEC

With the software installed and configured, it is time to start using the system. Adding/removing zones, rolling keys, etc.

Command utilities

The software package comes with a number of command line tools.

Comprehensive Guide

A comprehensive getting started guide is the OpenDNSSEC Initial Deployment Guide.


Reference Material

Available here.  



This chapter describes some troubleshooting tips and experiences.


This chapter describes some frequently asked questions from the users.

Reporting bugs

If you encounter any bugs: Reporting bugs

Mailing list

  • No labels