What are TLSA records?

A TLSA record is a DNS record that defines which certificate or public key a server must present during TLS negotiation. It includes:

the certificate usage

the selector

the matching type

the certificate or key data

TLSA records are stored under:

\_25.\_tcp.mail.yourdomain.com

They give precise instructions for verifying TLS.

Was this answer helpful?

Thanks for your feedback!