OpenDNSSEC Documentation
Space shortcuts
OpenDNSSEC Project Wiki

Links

OpenDNSSEC Developer Wiki
OpenDNSSEC Documentation
SoftHSM Developer Wiki
SoftHSM Documentation

OpenDNSSEC Home

All Versions

OpenDNSSEC v2.0
OpenDNSSEC v1.4
OpenDNSSEC v1.3
OpenDNSSEC v1.2.0
OpenDNSSEC v1.1.1
OpenDNSSEC v1.1.0
OpenDNSSEC v1.0.0

 

Current location:

OpenDNSSEC Documentation 1.4

Child pages
  • ods-ksmutil

Versions Compared

Old Version 1

changes.mady.by.user Sara Dickinson

Saved on

compared with

New Version 2

changes.mady.by.user Sara Dickinson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Options

Code Block
--zone <zone> /| --policy <policy>
	[--keytype <type>] | --all

"keytype" specifies the a single type of key to roll (both are rolled if nothing is specified) . After running, the enforcer will be woken up so that the signer can be sent the new information.

If the policy that the zone is on specifies that keys are shared then all zones on that policy will be rolled. A backup of the sqlite DB file is made (if appropriate).

 

Info

From 1.4.1 either the keytype must be specified or the '–all' option is required for this command. This is to avoid the possibility of rolling more keys than intended by accidentally forgetting to specify a key type.

 

Command: key purge

Code Block
ods-ksmutil key purge

...

Options

Code Block
--zone <zone> /|  --policy <policy>        aka -z /| -p

 

Command: key generate

Code Block
ods-ksmutil key generate

...