• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • (Plesk for Windows):
    MySQL Connector/ODBC 3.51, 5.1, and 5.3 are no longer shipped with Plesk because they have reached end of life. MariaDB Connector/ODBC 64-bit 3.2.4 is now used instead.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Resolved Cannot add DS records on domain DNS

Stordia

Stordia

New Pleskian
Server operating system version
Ubuntu 22.04.4 LTS
Plesk version and microupdate number
18.0.63 Update #1
I am trying to enable DNSSEC for some of my domains, after I try to add the DS records in DNS but with no luck.

Steps to reproduce:

Go to Websites & Domains -> example.com -> DNS Settings and [+ Add record].

Record type : DS

Domain name* [ ].example.com >>>
cannot be empty: This required field is empty. You need to specify a value.

You cannot add a DS record for that domain!

Or I am doing something false?
 
Continues...

After enabling DNSSEC, I have added the DS records manual from the CLI with the below command:

plesk bin dns --add example.com -ds "17177 13 1 86EF16342E82A5E46570856F285A7F088F964F27"
plesk bin dns --add example.com -ds "17177 13 2 84F0C5B1ACD26A55958D0F2015FC45F7BB038401F38CFBDFCBCA6D7772DB8843"
plesk bin dns --add example.com -ds "31762 13 1 CDBBF93E199EE4A6CAA0EB32B9AA6416B8202DDC"
plesk bin dns --add example.com -ds "31762 13 2 B0D3227EADB41A3B480675D1520E30AE686DEC2312CCBC0B9DD481227A0CE5E3"

Now and on every change I wish to made on the domain DNS I get this error:
Internal errorSyntaxError: Unexpected non-whitespace character after JSON at position 105 (line 1 column 106)

...and the strange thing is that the registration is done normally and the above error appears!
 
Hi! If you use a 2nd-level domain like "example.com", DS records should be added on the Registrar side, in an entity where you have registered the domain.

Adding DS records in Plesk is for scenarios with a 3rd-level domain when the parent zone (a 2nd-level domain) is hosted on Plesk. Seems the warning is GUI is correct because one of the required fields is empty (and CLI does not have one of the pre-validation steps that GUI has).
 
AYamshanov said:
Hi! If you use a 2nd-level domain like "example.com", DS records should be added on the Registrar side, in an entity where you have registered the domain.

Adding DS records in Plesk is for scenarios with a 3rd-level domain when the parent zone (a 2nd-level domain) is hosted on Plesk. Seems the warning is GUI is correct because one of the required fields is empty (and CLI does not have one of the pre-validation steps that GUI has).
Click to expand...
This actually didn't solve our case. Since one of the last updates, this field became required. This domain field was never required before, and we use Plesk on our primairy DNS sets. Even in a working subscription in which we had enabled DNSSEC before, we can't update the existing DS-records because they don't have a domain name (to be) filled in. This GUI update means we can never add DNSSEC to a domain again via Plesk. We need an alternative or solution. DS-records should be able to add with the domain field being empty.
 
DS (delegation signer)
Holds the name of a delegated zone. References a DNSKEY record in the sub-delegated zone. The DS record is placed in the parent zone along with the delegating NS records. (c) Domain Name System Security Extensions - Wikipedia
Click to expand...

The record should contain the name of the subdomain. If you want to enable DNSSEC for a domain, then the DS record should be placed inside the parent zone (e.g. on the Registrar side), and point to the (sub-)domain from the parent's point of view (and a DS record should not point to itself).

@Johndenkis If I wrongly understand your case, could you please provide a little bit more details to help understand the scenario of why you need to have a DS record in the domain that points to the same domain? As I understand, when a DS record points to its domain, it can't help to establish a chain of trust from a parent zone and domain.

Let's continue the discussion in the Issue - Can not add DS-records, domain is required field since update thread.
 
Just curious how this is supposed to work if Plesk IS the Parent Zone? At registrar we use Custom Name Servers that point to Plesk Instance and then we use Plesk for DNS.
 
EmperorFPI said:
Just curious how this is supposed to work if Plesk IS the Parent Zone? At registrar we use Custom Name Servers that point to Plesk Instance and then we use Plesk for DNS.
Click to expand...
I believe you registered a 2nd-level domain (e.g. "example.org") and configured custom name servers for the domain. The registrar manages a 1st-level domain (in this case, "org"). To configure the chain of trust, you need to add a DS record to the ".org" zone; for that, you need to provide DS records to the registrar. Usually, it is located somewhere near the form where you configure custom name servers.
 
You must log in or register to reply here.

Similar threads

J
Resolved Can not add DS-records, domain is required field since update
Replies
3
Views
983
Johndenkis
J
Azurel
Issue DNSSEC do not add entries in DNS Settings?
Replies
3
Views
598
scsa20
scsa20
C
Issue DANE Support missing on Domains
Replies
2
Views
519
chriz123
C
O
Issue Wrong TXT record implementation in Plesk DNS
Replies
6
Views
3K
Sebahat.hadzhi
Sebahat.hadzhi
A
Resolved DNS settings and records are not visible
Replies
1
Views
345
alpay.abay
A
Back
Top