After you enable the service authentication feature, Alibaba Cloud Public DNS authenticates the inbound Domain Name System (DNS) requests. This prevents third parties or unauthorized users from viewing information and using the DNS resolution service in Public DNS.
Access methods supported by service authentication
The service authentication feature supports access based on the JSON API for DNS over HTTPS (DoH) and Public DNS SDKs.
The service authentication feature does support access based on DoH or DNS over TSL (DoT). After you enable this feature, access over DoH or DoT is not authenticated.
Procedure
You can create an AccessKey pair by performing the following steps:
Log on to the Alibaba Cloud DNS console.
In the left-side navigation pane, click Public DNS. On the Public DNS page, click the More tab and click View Details next to Service Authentication.
On the Service Authentication page, click Create AccessKey Pair.
You can create one AccessKey pair at least and five AccessKey pairs at most.
If you want to view an AccessKey secret, Short Message Service (SMS) verification is required. The verification message is sent to the phone number that is bound to your Alibaba Cloud account. You can view the AccessKey secret only after you complete SMS verification.
The service authentication feature takes effect only after you enable the feature.
For more information about the API operation for service authentication, see URL signing.