Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Unable to establish DNSSEC chain of trust for .com domain hosted in Route 53

0

When setting up DNSSEC for our example.com domain in the Route 53 console, I am able to complete the first part successfully. Now I need to establish the chain of trust. AWS help tells me to add a DS record. However, DS is not an option in the "type of record dropdown" when using Quick Create.

Using the wizard produces this error message: InvalidChangeBatch 400: RRSet of type DS with DNS name example.com. is not permitted in zone example.com.

Does AWS automatically add the DS records for the .com zone?

Topics
Networking & Content Delivery
Tags
Amazon Route 53
Language
English
asked 3 years ago515 views
1 Answer
0

The following documents appear to support DNSSEC settings themselves.
I was wondering if there is something wrong with the way it is set up?
https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/domain-configure-dnssec.html

EXPERT
answered 3 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content