This feature only appears if the System Administrator installs Power Domain Name System(DNS) in either of the following interfaces:
DNS Security Extensions (DNSSEC) add a layer of security to the domains’ DNS records. DNSSEC uses digital signatures and cryptographic keys to validate that DNS responses are authentic. These digital signatures help to protect clients from various forms of attacks, such as Spoofing or a Man-in-the-Middle attack. DNSSEC keys remain on a server after you terminate an account.
If you restore an account on the same server from which you deleted it, the account’s DNSSEC keys are restored .
If the user transfers the account to another server, he must reconfigure DNSSEC for the domains and update the domain server records on the registrar. The system does not include DNSSEC keys in an account’s backup file.
To transfer an account with DNSSEC enabled domains, the following steps are to be performed for each domain:
If the old DNS records are not removed from the registrar, the domains may produce DNS resolution issues due to invalid DNSSEC responses.
To enable DNSSEC for a domain, the following steps are to be performed:
|Key Tag||An integer value that identifies the domain’s DNSSEC record.|
|Algorithm||The record’s encrypted signature.|
|Digest Type||The algorithm type that constructs the digest. Select the Digest Type that your registrar supports.|
|Digest||An alpha-numericstring that the algorithm generates.|
To disable DNSSEC for a domain, the following steps are to be performed:-
DNNSEC is a part of Simple Zone Editor in CPANEL. It is a key component of CPANEL as it helps to get a knowledge of old DNS records and it adds a layer of security to the domains’ DNS records. So it is a very helpful feature in CPANEL.