![]() Membership in the Administrators group, or equivalent, is the minimum required to complete these procedures. If the DNS server is also a domain controller, trust points are stored in Active Directory. By default, the list of trust points is stored in the file: %windir%\system32\dns\TrustAnchors.dns. If the DNS server is not Active Directory-integrated, trust points are stored on the DNS server as a text file. The list of trust points on a DNS server is similar to a zone in DNS. ![]() When you have completed the procedures in this topic, return to the parent checklist.Ĭhoose DNS Manager or Windows PowerShell to perform this procedure: Procedures are provided using the DNS Manager console and Windows PowerShell. For more information about trust points, see Trust Anchors. This information is provisioned in a trust point automatically when you import it from a file. To add a DS trust point, you must be able to provide the zone name, key tag, cryptographic algorithm, digest type, and digest. To add a DNSKEY trust point, you must be able to provide the zone name, cryptographic algorithm, and public key. You can add a DNSKEY trust point, or a DS trust point. To import a trust point, see Procedure: Import a Trust Point. Use the following procedures to add a trust point for a zone that has been signed with DNSSEC. Applies To: Windows Server 2012 R2, Windows Server 2012
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |