DDNS & Authority
Anthony Ryan Mattke
tonhe at ims1.imagestream-is.com
Mon Feb 5 17:37:35 UTC 2001
in the servers conf file i have a key defined as follow
key iphere. {
algorithm hmac-md5;
secret "xxxxxxxxxxxxxxxxxxxx";
};
and both keys are located in /var/named/tsig
on the client side i have the same exact keys located in /etc/named/tsig
and the private key key defined in the conf file.
any idea why this may not be working..
Thanks in advance..
__
~/ony
On Mon, 5 Feb 2001, Jim Reid wrote:
> >>>>> "Anthony" == Anthony Ryan Mattke <tonhe at ims1.imagestream-is.com> writes:
>
> Anthony> When doing a NS Update using tsig keys the master domain
> Anthony> server reports NOTAUTH, when in fact it is the primary
> Anthony> server both with internic and software wise aswell. The
> Anthony> zone loads w/o errors (minus warnings about expire and
> Anthony> refresh values)
>
> Anthony> Does anyone have any suggestions about why the server
> Anthony> would report no authority ?
>
> NOTAUTH means not authorised, not no authority. The update request is
> being rejected because the wrong TSIG key is used or the TSIG fails to
> validate because the client and server's clocks are too badly out of
> sync. Or maybe a BIND9 update-policy clause is making the server
> reject the particular update request.
>
More information about the bind-users
mailing list