Testing RFC 5011 key roll
Evan Hunt
each at isc.org
Tue Apr 21 15:07:14 UTC 2015
> By default it dumps its output to a file; you can use `rndc secroots -`
> to get output on stdout.
Using "-" to get it to dump the secroots output to stdout is a new
feature added for 9.11. That hasn't been published yet, but if you build
from the source tree at source.isc.org (like Tony does), you can it.
If you're doing that, then you can *also* use "rndc managed-keys", which
lets you check key status and force keys to be refreshed ahead of schedule.
--
Evan Hunt -- each at isc.org
Internet Systems Consortium, Inc.
More information about the bind-users
mailing list