Re: [Opendnssec-user] Error creating key in repository SoftHSM / generate key pair: CKR_GENERAL_ERROR

Hi, > Dec 14 18:00:57 a ods-enforcerd: Error creating key in repository SoftHSM > Dec 14 18:00:57 a ods-enforcerd: generate key pair: CKR_GENERAL_ERROR I think I found the problem. The user opendnnsec is in the group softhsm, but the group was not able write. -> chmod g+w /var/lib/softhsm/slot0.

[Opendnssec-user] Error creating key in repository SoftHSM / generate key pair: CKR_GENERAL_ERROR

Hi, I added a new zone. The enforcer exits now every time with this error: Dec 14 18:00:56 a ods-enforcerd: opendnssec starting... Dec 14 18:00:56 a ods-enforcerd: opendnssec Parent exiting... Dec 14 18:00:56 a ods-enforcerd: opendnssec forked OK... Dec 14 18:00:56 a ods-enforcerd: group set to:

Re: [Opendnssec-user] DNSKEY will expire in 11.6381365740741 days (kskwarn is 12.0)

Hi Matthijs, > If you have a Refresh period of 3 days, a Resign period of 12 hours, > and a Signature Validity of 14 days, then you should let nagios check > that a signature does not expire within 10.5 days (14 - 3 - 0.5). what I did today was setting Refresh to P13D. As far as I understand the