AddByDS method of the PS_DnsServerTrustAnchor class
Adds a trust anchor DNSKEY record. If there is no trust anchor zone present, the cmdlet should create one. If neither SecureEntryPoint nor ZoneSigningKey are specified, then the cmdlet creates a trust anchor with SEP bit set.
Syntax
uint32 AddByDS(
[in] string Name,
[in] string ComputerName,
[in] uint16 KeyTag,
[in] string DigestType,
[in] string Digest,
[in] string CryptoAlgorithm,
[in] boolean PassThru,
[out] DnsServerTrustAnchor cmdletOutput
);
Parameters
-
Name [in]
-
Name of the trust anchor.
-
ComputerName [in]
-
Optional DNS server name.
-
KeyTag [in]
-
Specifies the unique key tag that the DNS server uses to identify a key.
-
DigestType [in]
-
Specifies the type of algorithm that the zone signing key uses to create the DS record. Valid values are one or more of the following: Sha1, Sha256, or Sha384.
-
Digest [in]
-
The DS digest data.
-
CryptoAlgorithm [in]
-
Cryptographic algorithm used for key generation.
-
PassThru [in]
-
True to return the object that was modified by the method. By default, this method does not generate any output.
-
cmdletOutput [out]
-
Receives an embedded instance of the DnsServerTrustAnchor class.
Requirements
| Minimum supported client |
None supported |
| Minimum supported server |
Windows Server 2012 |
| Namespace |
Root\Microsoft\Windows\Dns |
| MOF |
|
| DLL |
|