DNS
17 BADKEY
Key not recognized. The TSIG key name in the message is not configured on the server.
When You See This Code
Your TSIG-signed query or update references a key name that the server does not have in its keyring, so it cannot verify the signature.
How to Fix
Ensure the TSIG key name matches exactly (case-sensitive) on both client and server. Add the missing key to the server's configuration if it is a new key.