Creating Key Reference Version

Create key reference version for actual key residering in Thales CM.

You can retire the current key reference version and create a new version.

    1. Open the Oracle Cloud Console navigation menu and click Identity & Security. Under Key Management and Secret Management, click External Key Management.
    2. In the External key Management home page, select a vault from the summary table.
    3. In the Vault Details page, select a key reference.
    4. In the Key Reference Details page, under Versions, click Rotate Key Reference.
    5. In the Rotate Key Reference page, enter the key rotation version ID.
    6. Click Rotate Key Reference.

      A new entry is added to the Version table and the rotation status is set as "Enabled."

  • Open a command prompt and run oci kms management key-version create to create a key reference version.

    oci kms management key-version create --external-key-version-id

    Avoid entering confidential information.

    For a complete list of flags and variable options for Vault CLI commands, see Command Line Reference.

  • Run the ExternalKeyVersionReference operation to create a new key reference version for the external key created on the external key management.


    For information about using the API and signing requests, see the API Documentation.

    For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.