Information
The topic you requested is included in another documentation set. For convenience, it's displayed below. Choose Switch to see the topic in its original location.

DnsServerSigningKey class

DNS Server Signing Key Representation for Zone Signing Key and Key Signing Key.

The following syntax is simplified from Managed Object Format (MOF) code and includes all of the inherited properties.

Syntax

[Dynamic, Provider("DnsServerPSProvider")]class DnsServerSigningKey
{
  String   ZoneName;
  String   KeyId;
  String   KeyType;
  String   CurrentState;
  String   KeyStorageProvider;
  boolean  StoreKeysInAD;
  String   CryptoAlgorithm;
  Uint32   KeyLength;
  datetime DnsKeySignatureValidityPeriod;
  datetime DSSignatureValidityPeriod;
  datetime ZoneSignatureValidityPeriod;
  datetime InitialRolloverOffset;
  datetime RolloverPeriod;
  String   RolloverType;
  String   NextRolloverAction;
  datetime LastRolloverTime;
  datetime NextRolloverTime;
  String   CurrentRolloverStatus;
  String   ActiveKey;
  String   StandbyKey;
  String   NextKey;
};

Members

The DnsServerSigningKey class has these types of members:

Properties

The DnsServerSigningKey class has these properties.

ActiveKey
Data type: String
Access type: Read-only

Signing key pointer string for the key's active key.

CryptoAlgorithm
Data type: String
Access type: Read-only

DnsSec signature generation algorithm.

RsaSha1 (RsaSha1)
RsaSha1NSec3 (RsaSha1NSec3)
RsaSha256 (RsaSha256)
RsaSha512 (RsaSha512)
ECDsaP256Sha256 (ECDsaP256Sha256)
ECDsaP384Sha384 (ECDsaP384Sha384 )
CurrentRolloverStatus
Data type: String
Access type: Read-only

The current state of this key.

NotRolling (NotRolling)
Queued (Queued)
RollStarted (RollStarted)
ZskWaitingForDnsKeyTtl (ZskWaitingForDnsKeyTtl)
ZskWaitingForMaxZoneTtl KskWaitingForDSUpdate (ZskWaitingForMaxZoneTtl KskWaitingForDSUpdate)
KskWaitingForDSTtl (KskWaitingForDSTtl)
KskWaitingForDnsKeyTtl (KskWaitingForDnsKeyTtl)
WaitingForRFC5011RemoveHoldDown (WaitingForRFC5011RemoveHoldDown)
RollError (RollError )
CurrentState
Data type: String
Access type: Read-only

The current state of this key.

Active (Active)
Retired (Retired )
DnsKeySignatureValidityPeriod
Data type: datetime
Access type: Read-only

Amount of time that signatures covering DNSKEY record sets should be valid.

DSSignatureValidityPeriod
Data type: datetime
Access type: Read-only

Amount of time that signatures covering DS record sets should be valid.

InitialRolloverOffset
Data type: datetime
Access type: Read-only

Amount of time to delay the first scheduled key rollover. This allows for key rollovers to be staggered.

KeyId
Data type: String
Access type: Read-only

Unique identifier for the key.

KeyLength
Data type: Uint32
Access type: Read-only

Length in bits of keys. Valid range is from 1024 to 4096 with 64 bit increments.

KeyStorageProvider
Data type: String
Access type: Read-only

The KSP used to generate keys.

KeyType
Data type: String
Access type: Read-only

Specifies if the key is a ZSK or KSK.

ZoneSigningKey (ZoneSigningKey)
KeySigningKey (KeySigningKey )
LastRolloverTime
Data type: datetime
Access type: Read-only

The time at which the last rollover event was performed.

NextKey
Data type: String
Access type: Read-only

Signing key pointer string for the key's next key. This key will be used during the next key rollover event.

NextRolloverAction
Data type: String
Access type: Read-only

The action to take for this key on the next key manual or scheduled key rollover event.

Default (Default)
Normal (Normal)
RevokeStandby (RevokeStandby)
Retire (Retire )
NextRolloverTime
Data type: datetime
Access type: Read-only

The time at which the next rollover action must take place.

RolloverPeriod
Data type: datetime
Access type: Read-only

Amount of time between scheduled key rollovers.

RolloverType
Data type: String
Access type: Read-only

Will always be DoubleSignature if Type is KSK and PrePublish if Type is ZSK.

DoubleSignature (DoubleSignature)
Prepublish (Prepublish )
StandbyKey
Data type: String
Access type: Read-only

Signing key pointer string for the key's standby key.

StoreKeysInAD
Data type: boolean
Access type: Read-only

TRUE if keys are stored on zone object in Active Directory. False otherwise.

ZoneName
Data type: String
Access type: Read-only

Name of the zone corresponding to the key.

ZoneSignatureValidityPeriod
Data type: datetime
Access type: Read-only

Amount of time that signatures covering all other record sets should be valid.

Requirements

Minimum supported client

Windows 8

Minimum supported server

Windows Server 2012

Namespace

\root\Microsoft\Windows\Dns

MOF

DnsServerPSProvider.mof

DLL

DnsServerPSProvider.dll

 

 

Community Additions

Show:
© 2014 Microsoft