Enom DNSSEC Tool
A simple HTML and jQuery tool to enable DNSSEC on enom-registered domains.
The Enom DNSSEC tool is designed to make it easy for a person with an Enom reseller account to enable DNSSEC on their Enom-registered domains.
Enom provides an API to add, delete, and review DNSSEC records. Using it (as of 12/10/2019) requires you to build and submit a URL containing a number of codes and data for each domain. While it's certainly possible to build the URLs yourself, the Enom DNSSEC Tool makes it much easier, especially if you have a bunch of domains you want to secure.
- You must have an Enom reseller account to have access to the Emom API.
- You must whitelist your IP address using Enom's API Live Environment Interface (Log on to your Enom reseller account, and on the Dashboard, scroll down to Reseller Services and click "API Live Environment Interface," where you can add your IP address.)
- You must have access to generate the required DNSSEC resource records using your web host's control panel or command line for the DNS provider of the domain. The Enom DNSSEC Tool only works with DNS providers that support DNSSEC. As of 12/05/2019, Enom's default nameservers did not support the creation of the appropriate resource records to create a proper DNSSEC chain. That means your domains, though registered with Enom, must use another DNS provider that does support DNSSEC.
Enom's API requires that your Enom reseller user ID and password be submitted in each API request (URL), so it is absolutely essential that you install and use the Enom DNSSEC Tool only on a secure (HTTPS) connection. Otherwise, your Enom reseller user ID and password would be sent over an unencrypted connection and could be intercepted.
The Enom DNSSEC Tool sets the "src" attribute of an iframe to the API request URL, so that if you left the page up and someone else had access to your computer, they could look at the source code for the page and see your Enom user ID and password.
Simply download the Enom DNSSEC Tool files and install them in a folder or subfolder of the public_html directory of a domain protected by SSL/TLS (see Security above). You only need to install the Enom DNSSEC Tool on one domain, and can use it to secure as many Enom-registered domains as you have in your Enom reseller account.
- Make sure you satisfy all the Requirements noted above.
- Use your web host's control panel or command line at your DNS provider to create the DNSSEC record for the domain.
- Browse to your installation of the Enom DNSSEC Tool.
- Select the command you wish to use for the request to Enom; e.g., "Add DNSSEC" to add DNSSEC for the domain.
- Select the Algorithm and Digest Type used in the DNSSEC record you got from your DNS provider/web host.
- Fill out the SLD and TLD fields for the domain. Note that there is no "." for the TLD.
- Enter the digest and key tags provided by the DNS provider/web host for the domain.
- Click the Submit button to send the request.
- Review the output in the iframe at the bottom of the Enom DNSSEC Tool for the results of the request. If there is an error, Enom will describe the issue in the results.
- If the request is successful, you can use an online tool like Verisign Labs DNSSEC Analyzer to check the results. Note that it may take a few minutes for all the checks to be green.