Enable DNSSEC for domains registered at another company

Domain Name Security Extensions (DNSSEC) add an extra layer of security to your domain names by attaching digital signature (DS) records to their DNS information. Your domain must meet the following criteria before enabling DNSSEC. If you don't meet these criteria, see DNSSEC FAQ for information about using self-managed DNSSEC.

To enable DNSSEC for domains registered at another company

  1. Log in to your GoDaddy account.
  2. From the top menu, click the DNS tab, and select Manage Zones.
  3. Enter the domain name you want to use and click Search.
  4. Under Advanced Features, click DNSSEC.
  5. Under Enabled, click On.
  6. In the Email key change notifications field, enter your email address, and click Apply.
  7. Note: If you receive the following error message, your attempt to enable DNSSEC failed: Save failed. Zone contains invalid CNAME record and cannot be DNSSEC enabled. To resolve the issue, go to the Records section (above the Advanced Features section), locate the CNAME record that conflicts with another record in your file, and edit or delete one of the conflicting records. For instance, you might have a CNAME record and an A record that have the same www hostname.

  8. Within a few minutes, we generate your DS records. Click View DS records.
  9. Copy the DS record information that displays. To update your nameservers, submit this DS record information to your domain name's registrar.

Next step


Czy ten artykuł był pomocny?
Thanks for your feedback. To speak with a customer service representative, please use the support phone number or chat option above.
Cieszymy się, że udało się nam pomóc! Czy coś jeszcze możemy dla Ciebie zrobić?
Przykro nam z tego powodu. Tell us what was confusing or why the solution didn’t solve your problem.