Domains Help

Enable DNSSEC in my Premium DNS account

Domain Name Security Extensions (DNSSEC) add an extra layer of security to your domain names by attaching digital signature (DS) records to their DNS information. Your domain must meet the following criteria before enabling DNSSEC. If you don't meet these criteria, see DNSSEC FAQ for information about using self-managed DNSSEC.

To enable DNSSEC in your Premium DNS account

  1. Log in to your GoDaddy account.
  2. On your product list next to Domains, click the Text Icon (Plus sign button) to expand the list:
  3. Expand Domains List

  4. Next to the domain you want to manage, under the Action section, click on the Manage DNS button:
  5. Manage DNS Button

  6. Under Advanced Features, click DNSSEC.
  7. Under Enabled, click On.
  8. In the Email key change notifications field, enter your email address, and click Apply.
  9. If you receive the following error message, your attempt to enable DNSSEC failed: Save failed. Zone contains invalid CNAME record and cannot be DNSSEC enabled. To resolve the issue, go to the Records section (above the Advanced Features section), locate the CNAME record that conflicts with another record in your file, and edit or delete one of the conflicting records. For instance, you might have a CNAME record and an A record that have the same www hostname.

Because we manage your DS records, no further action is required after you complete the steps in this article.

You cannot use both DNSSEC and Secondary DNS with the same domain name.

For more information about editing or deleting DNS records, see Manage DNS .

Next step


Was This Article Helpful?
Thank You For Your Feedback
Glad we helped! Anything more we can do for you?
Sorry about that. How can we be more helpful?