DomiNIC Release Notes – Page 6

DomiNIC Release 8.2.1

Upated Jetty version to 9.4.36.v20210114.
Scheduled orders can now be started immediately within the result table of the “Search Orders” page.
DNSSEC support for split dns domains.
New download option for SSL certificates which contains the certificate, the root certificate and all intermediate certificates as separate files.
Added a separate user right for ttl controlled jobs.
The standalone page for link order confirmations (e.g. for owner changes) will no longer contain resource records. This reduces the amount of information shown to the customer and makes the page clearer.

Fixed an issue where name server ip address changes where mistakenly detected for name servers that had assigned more than one ipv4 or ipv6 address
Fixed a connection issue with Denic that occured from time to time during NIC operations
The domain status “Authinfo1 created” will only be stored again for TLDs that uses temporary authcodes like .de and .eu
Fixed an issue that could cause accounting files to be overridden when accouting is activated for both domains and SSL certificates
Fixed an issue where the language code could not be selected when a failed order had been reloaded
Fixed some issues with the display of messages within certain popup panels
Fixed an issue in the WfE interface that caused problems with the handling of multiple jobs.

SSL certificate ordering: Contact details can differ from the data given in the CSR file now.
Improved text for authinfo-creation notification emails.
TTL value “0” for resource records: This value is now allowed in system configuration entry “dominic.dmw.resourcerecord.ttls”.
Improved waiting times for KSK rollover orders before and after the new DS record is published at the NIC. This adjustment minimizes the risk of validation errors due to old (cached) records within resolvers.

Order approvals for domain expire orders can now be confirmed by end customers again
Domain import orders that import data directly from the order are now able to import resource records again

DoS prevention filter added for Jetty client gateways. This feature is not part of the DomiNIC standard, but can be added at an additional charge. Please contact us for more information.

SOAP API operation domainZoneModify will not accept other name server groups than the currently assigned group any more. This prevents unintended name server changes and secures the state of the current zone
It is now possible to create individual email templates in case of a new user account creation and when a user forgot his password
Compatibility for new Eurid API version 2.4

Fixed issue with customer changes for zones and in some cases for domains
A, AAAA and MX resource records for idn domains can now contain underscores in the name field
Fixed issue that prevented users to add PTR records to reverse zones for subnets of class-c networks
Fixed issue with KSK rollovers for domains managed by CORE
For transfers of dnssec signed domains, the current dnssec key is now queried from the public dns instead of the name servers in the order
Failed updates after transfers due to zone validation errors detected by the NIC will now trigger a partial success email. The reservation only status will not be set, since the transfer had been completed successfully
Fixed an issue where domain import orders with full contact sets (including handles) failed, if the contacts were not already stored in the database
Fixed behavior of domain registrations and transfers with dnssec in combination with zone validation errors detected by the NIC
Dns updates are now possible, after a domain import or data synchronization with failed dns synchronization
Fixed behavior of Key-Systems domains with detected zone validation errors
Fixed issue where host check operations failed for CORE, if the host object is assigned to another account

Expire is the new default action instead of delete when a domain is cancelled via GUI. This will only be displayed for domains where both delete and expire actions are available according to tld policies and user rights.
Offset for the accept date of Norid domains can now be configured by a new configuration setting “dominic.norid.acceptdate.offset”
Minor layout improvements in the domain inventory

Fixed issue regarding domain imports of domains with SLDs via GUI
KSK DNS queries for rollovers of domains under dnssec key management will not be send to hidden primary name servers any more. Instead only visible name servers will be queried.
Adjustments for changed Nic.at notifications for deleted/ expired domains

Prohibited overwriting of contact handles that occurred under certain circumstances