Listing the Vault

A list of vault resources created in the OCI Vault service.

    1. Open the navigation menu, select Identity & Security, and then select Vault.
    2. Under List scope, select a compartment that contains the vault resources.
    3. From the list, click the name of a vault.
    4. The console displays the following information:
      • Compartment: The unique, Oracle-assigned ID of the compartment that contains the vault.
      • OCID: The unique, Oracle-assigned ID of the vault.
      • Created: The date and time when you initially created the vault.
      • HSM Key Version Usage: The number of all key versions across all HSM-protected master encryption keys that the vault contains. A master encryption key comprises one or more key versions, up to the limit allowed by service limits.
      • Software Key Version Usage: The number of all key versions across all software-protected master encryption keys that the vault contains. This can include one or more key versions for each master encryption key, up to the limit allowed by service limits.
      • Virtual Private: Whether or not the vault is a virtual private vault.
      • Management Endpoint: The service endpoint for CreateKey, CreateKeyVersion, EnableKey, DisableKey, UpdateKey, ListKeys, ListKeyVersions, GetKey, GetKeyVersion, ImportKey and ImportKeyVersion operations.
      • Cryptographic Endpoint: The service endpoint for Encrypt, Decrypt, and GenerateDataEncryptionKey operations.
      • Wrapping Key: The public RSA wrapping key for the vault.
  • Open a command prompt and run oci kms management vault change-compartment to move a vault from one compartment to another within the same tenancy:

    oci kms management vault change-compartment --vault-id <target_vault_id> --compartment-id <new_compartment_id>

    For example:

    Open a command prompt and run oci kms management vault get to view the configuration details for a vault:

    oci kms management vault get --vault-id <target_vault_id>

    For example:

    
    oci kms management vault get --vault-id ocid1.vault.region1.sea.exampleaaacu2.examplesrcvbtqe5wgrxn2jua3olmeausn5fauxseubwu5my5tf3w3j33edq

    For a complete list of parameters and values for CLI commands, see KMS CLI Command Reference.

  • Run the ListVaultReplicas operation using the KMSVAULT API endpoint.

    Note

    Each region use the KMSVAULT API endpoint for create, update, and list operations for vault. This endpoint is referred to as the control plane URL or vault management endpoint. Each region also has a unique endpoint for operations related to retrieving vault details. This endpoint is known as the data plane URL or the secret retrieval endpoint. For regional endpoints, see the API Documentation.

    For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.