Updating Auto Key Rotation Details

Update automatic key rotation details such as rotation schedule and interval.

For old or existing keys, you can modify the auto rotation setting to enable auto key rotation, update the rotation schedule, and interval.

    1. Open the navigation menu, click Identity & Security, and then click Vault.
    2. Under List scope select a compartment that contains the key that you want to update.
    3. On the Vaults page, click the name of the vault to open its details page.
    4. Under Resources click Master Encryption Key and then click the key name to open its details page.
    5. Click Edit auto-rotation settings.
      Note

      You can also use the Edit auto-rotation settings from the Actions menu in the key summary table.
    6. In the Edit auto-rotation settings page, update auto rotation details such as auto rotation setting, rotation schedule, or rotation interval.
      Note

      To disable auto key rotation, clear the auto rotation setting check box for the selected key.
    7. Click Update.
  • Open a command prompt and run Key Update to edit the auto rotation settings.

    oci kms management key update --compartment-id <target_compartment_id> --display-name <key_name> --key-shape <key_encryption_information> --endpoint <control_plane_url> --is-auto-rotation-enabled <true | false> --auto-key-rotation-details <schedule_interval_information>

    For example:

    
    oci kms management key update --compartment-id ocid1.compartment.oc1..example1example25qrlpo4agcmothkbgqgmuz2zzum45ibplooqtabwk3zz --display-name key-1 --key-shape '{"algorithm":"AES","length":"16"}' --endpoint https://exampleaaacu2-management.kms.us-ashburn-1.oraclecloud.com --is-auto-rotation-enabled enabled --auto-key-rotation-details '{"rotationIntervalInDays": 90, "timeOfScheduleStart": "2024-02-20T00:00:00Z"}' 

    Avoid entering confidential information.

    For a complete list of parameters and values for CLI commands, see KMS CLI Command Reference.

  • The AutoKeyRotationDetails operation provides details of auto rotation schedule for the Key being create updated or imported.

    For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.