Revert to an Unsigned Zone
Updated: October 7, 2009
Applies To: Windows Server 2008 R2
Tip
This topic applies to DNSSEC in Windows Server 2008 R2. DNSSEC support is greatly enhanced in Windows Server 2012. For more information, see DNSSEC in Windows Server 2012.
If you encounter errors while deploying DNSSEC, you might wish to revert back to the original, unsigned zone.
Reverting back to the unsigned zone
Use the following procedures to revert back to the unsigned version of the zone.
Obtain a copy of the unsigned zone file from the secure signing computer or secure backup computer and place it in the %windir%\System32\DNS directory.
Reload this zone file using the steps provided in Reload a Zone File.
Delete the certificates used to store the private key in Back Up Private Keys.