Help Center>
Data Encryption Workshop>
User Guide>
Cloud Secret Management Service>
Managing Secret Versions>
Rotation Secret Version
Rotation Secret Version
This section describes how to rotate secret versions on the secret details page.
Constraints
- The secret type is RDS DB instance secret.
- You need to use an IAM agency to authorize the op_svc_kms account, KMS CMKFullAccess, and RDS FullAccess permissions (required only when automatic rotation is enabled).
- The secret account must be an existing RDS database account.
Manual Rotation
- Log in to the management console.
- Click
in the upper left corner of the management console and select a region or project. - Click
. Choose . - In the navigation pane, choose Cloud Secret Management Service.
- Click a secret name to go to the details page.
- In the Version List area, click Rotate Now.
Figure 1 Version list
- On the Rotate Now page, click OK. If a message indicating rotation success is displayed in the upper right corner, the version switchover is complete.
- After the version rotation is complete, the version whose status is SYSCURRENT is the latest secret version.
Automatic Rotation
- Log in to the management console.
- Click in the upper left corner of the management console and select a region or project.
- Click . Choose .
- In the navigation pane, choose Cloud Secret Management Service.
- Click a secret name to go to the details page.
- Click Set Rotation Policy in the upper right corner. On the Set Rotation Policy page, toggle on the Automatic Rotation switch, as shown in Figure 2.
- Set the rotation period and click OK. A message indicating the rotation policy is set successfully is displayed in the upper right corner.
Parent topic: Managing Secret Versions
Last Article: Managing Secret Version Statuses
Next Article: Managing Tags
Did this article solve your problem?
Thank you for your score!Your feedback would help us improve the website.