Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

What are the steps to perform a lost KSK rollover procedure?

ksk Lost perform procedure rollover steps
0
Posted

What are the steps to perform a lost KSK rollover procedure?

0 CommentsAdd a Comment

1 Answer

0

A lost KSK will likely cause SERVFAIL errors so wait until Friday or Saturday morning to minimize disruption: • Generate a new KSK and sign zone with the new KSK and existing ZSKs. • Log into www.dotgov.gov and select Unsign Domain for this domain. • If using the .gov Registrar Monitor, wait for the standard Key Monitor email message notifying you of the DS RR creation and publish event. • (alternate) If no .gov Registrar Monitor service is enabled for this domain, then upload the keyset for the new KSK manually. • Wait 1 TTL period before possible SERVFAIL errors cease.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123