-
Type:
Bug
-
Status: Closed
-
Priority:
Minor
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: 2.0.0
-
Component/s: Enforcer NG
-
Labels:
I configured the KSK lifetime to be 4 months and ZSK lifetime to 4 hours. The auto generate period was set to 4 hours.
The setup command will say that no keys are needed but two are generated anyways. The first text must be wrong.
user@ubuntu:/var/opendnssec$ sudo ods-enforcer setup
no KSK keys of 2048 bits needed.
no ZSK keys of 1024 bits needed.
generating 1 KSKs of 2048 bits.
generating 2048 bit RSA key in repository: SoftHSM
key generation successful: 5883d5dcc5a59799582001a7cf9c4b35
finished generating 2048 bit KSKs.
generating 1 ZSKs of 1024 bits.
generating 1024 bit RSA key in repository: SoftHSM
key generation successful: 10cad40630c2fcb95f76e56de2d3e737
finished generating 1024 bit ZSKs.
flushing all tasks...
setup completed in 1 seconds.