Simple DNS Plus
Edit this page

Did you notice something wrong or unclear, or want to add something more to this page?

Great !!

You can edit the source text of this page on GitHub (click here to learn how).

After you submit your changes ("pull request"), we will review it and update the page.

TLSA-Records (Transport Layer Security Authentication)

TLSA records are used to specify the keys used in a domain's TLS servers.

The TLSA record identification (record name) is made of of 3 parts:

  • Port number: The port number that the TLS server listens on.

  • Protocol: The protocol used (udp, tcp, sctp, or user defined).

  • Server host name: Host name of the TLS server.

TLSA-records have the following data elements (see RFC below for details):

  • Certificate usage: A numeric value (0-255).

  • Selector: A numeric value (0-255).

  • Matching type: A numeric value (0-255).

  • Certificate association data: Hexadecimal.

To create a new TLSA-record, right-click a zone in the left list in the DNS Records window, and select "Other new record" from the pop-up menu.

This record type is defined in RFC6698.

Simple DNS Plus

  • Home
  • Search
  • Product details

  • Features
  • Screen shots
  • Plug-ins
  • Tools & Add-ons
  • Testimonials
  • What's new
  • Release notes
  • Download

  • Download
  • Buy

  • Pricing
  • New license
  • Additional license
  • Upgrade
  • Support

  • Overview
  • Lost License Key
  • Knowledge Base
  • Online documentation
  • Contact us