Listing Master Encryption Keys

A list of master encryption key created in the vault.

    1. Open the navigation menu, click Identity & Security, and then click Vault.
    2. Under List scope, select the compartment that contains the master encryptions keys that you created in the vault.
    3. From the list of keys, click on a key name.
    4. The OCI Console displays the following information:
      • OCID: The unique, Oracle-assigned ID of the key.
      • Created: The date and time when you initially created the key.
      • Compartment: The unique, Oracle-assigned ID of the compartment that contains the key.
      • Protection Mode: Where the key is stored and processed, whether on a hardware security module (HSM) or on a server (software).
      • Vault: The unique, Oracle-assigned ID of the vault that contains the key.
      • Key Version: The unique, Oracle-assigned ID of the key version.
      • Algorithm: The encryption algorithm used by the key.
      • Length: The number of bits in the key length (for AES keys and RSA keys).
      • Curve ID: The curve ID of the key (for ECDSA keys).
  • Use the oci kms management key get command and required parameters to get the details of a master encryption key:

    oci kms management key get --key-id <key_id>

    For example:

    
                    oci kms management key get --key-id ocid1.key.region1.sea.exampleaaacu2.examplesmtpsuqmoy4m5cvblugmizcoeu2nfc6b3zfaux2lmqz245gezevsq --endpoint https://exampleaaacu2-management.kms.us-ashburn-1.oraclecloud.com

    For a complete list of parameters and values for CLI commands, see the CLI Command Reference.

  • Run the ListKeys operation to get information about a specific master encryption key using the KMSMANAGMENT endpoint.

    Note

    Each region uses the KMSMANAGMENT endpoint for managing keys. This endpoint is referred to as the control plane URL or vault management endpoint. For regional endpoints, see the API Documentation.

    .

    For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.