Hi,
I’ve been using deSEC for a while and got an email stating that some action is required. I’m not the most tech-savvy person out there, so I’m struggling lightly at this:
Your provider may require you to input this information as a block or as individual values. To obtain individual values, split the text below at the spaces to obtain the
From my own account, obv. I made the keys unrecognizable.
- key tag,
- algorithm,
- digest type
- digest (in this order).
5680 13 2 2*******9ab*********bbf82f*******7b2e39d******43d5******4a
5680 13 4 b******************867**c24********************bc7****bb***********464******108
NOTE: no uppercase characters in both of those keys. In IONOS’s example pubKey, there are, and there are special characters as well +
and /
- which is why I was not sure if the second line is in fact the pubKey.
From IONOS’s Website:
In order for us to set up the DS record for you, we need your domain name and the information listed below in the following format:
> "extensions": {
> "secDns": {
> "dsData": [{
> "keyTag": 5680,
> "alg": 13,
> "digestType": 2,
> "digest": "2*******9ab*********bbf82f*******7b2e39d******43d5******4a",
> "keyData": {
> "flags":
> "protocol":
> "alg": 13
> "pubKey":
> }
> }]
> }
> }
> }
This example lists the required information for the domain example.com
:
"extensions": {
"secDns": {
"dsData": [{
"keyTag": 370,
"alg": 13,
"digestType": 2,
"digest": "BE74359954660069D5C63D200C39F5603827D7DD02B5 6F120EE9F3A86764247C",
"keyData": {
"flags": 257
"protocol": 3
"alg": 7
"pubKey":"/AwEAAbinasY+k/9xD4MBBa3QvhjuOHIpe319SFbWYIRj /nbmVZfJnSw7By1cV3Tm7ZlLqNbcB86nVFMSQ3JjOFMr" }
}]
}
}
You can usually find this information in the management interface of your DNS provider. If you do not have access to this information, please contact your DNS provider.
################
Thanks for assisting