How to Create a Secondary Domain in UltraDNS Without a TSIG Key

This article explains how to create a secondary domain in UltraDNS without using a TSIG key. 

It applies when configuring UltraDNS as a secondary DNS provider and the primary name server does not require TSIG authentication.

When to Use This Article

• You are adding a secondary domain in UltraDNS.
• Your primary DNS provider does not use TSIG authentication.
• You are configuring zone transfer without shared keys.

Prerequisites

Before creating the secondary domain, confirm that the domain exists on the primary name server. 

Ensure that UltraDNS AXFR IP addresses are whitelisted on the primary server and that TCP port 53 is open for zone transfers.

How to Create a Secondary Domain Without a TSIG Key

1. Log in to the UltraDNS portal.
2. Click on Domains.
3. Click + Add Domain.
4. Enter the full domain name.
5. Select Secondary Domain.
6. Enter the Primary Name Server hostname or IP address.
7. Leave the Use TSIG Key option unchecked.
8. Enter any optional backup primary name servers if applicable.
9. Enter a notification email if desired.
10. Click Save.

Verification

After saving, confirm that the secondary zone populates with DNS records in the UltraDNS portal. 

If the zone does not populate, verify that the primary name server allows zone transfer from UltraDNS.

Important Notes

• TSIG provides authentication for zone transfers but is not required if the primary server allows transfers without it.
• At least one reachable primary name server must permit AXFR.
• Firewall rules must allow TCP port 53 for zone transfer.

Related Articles

• How to Create a Secondary Domain in UltraDNS Using a TSIG Key
• What IP Addresses Must Be Whitelisted for Zone Transfer and NOTIFY to UltraDNS?
• Does UltraDNS Check All Primary Name Servers Prior to Adding a Secondary Zone?