Getting the Public RSA Wrapping Key

This section describes how to get public RSA wrapping key by using Console.

    1. Open the navigation menu, click Identity & Security, and then click Vault.
    2. Under List Scope, in the Compartment list, click the name of the compartment that contains the vault for which you want the public RSA wrapping key.
    3. From the list of vaults in the compartment, click the name of the vault.
    4. Click Create Key under Master Encryption Keys.
    5. Select the Import external key check box to see the wrapping key information.
    6. Click the Public Wrapping Key value to view the public RSA wrapping key, and then click Copy.
    7. Save the copied wrapping key, and then continue Applying RSA-OAEP to Wrap the Key Material.
  • Open a command prompt and run oci kms management wrapping-key get to get the vault's public RSA wrapping key:

    oci kms management wrapping-key get --endpoint <control_plane_URL>

    For example:

    
    oci kms management wrapping-key get --endpoint https://exampleaaacu2-management.kms.us-ashburn-1.oraclecloud.com

    After you get the public wrapping key, wrap the AES key material by applying RSA-OAEP.

    For a complete list of parameters and values for CLI commands, see KMS CLI Command Reference.

  • Run the GetWrappingKey operation to get the public RSA wrapping key.

    For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.