Help Center> Data Encryption Workshop> Best Practices> Secret Management> Rotating Secrets> Overview

Updated on 2022-12-12 GMT+08:00

View PDF

Overview

If you have not updated secrets for a long time, important information (such as important passwords, tokens, certificates, SSH keys, and API keys) protected by these secrets are exposed to leakage risks. Periodically rotating secrets improves the security of protected plaintext information.

HUAWEI CLOUD provides two secret rotation policies:

You can select a rotation policy as needed.

Procedure

The administrator adds a secret version and updates its content on the console or via an API.
The application calls a CSMS API to obtain the latest secret version or the secret of a specified version status, and then rotate the secret.
Regularly repeat steps 1 and 2 to rotate secrets.

Parent topic: Rotating Secrets

Previous topic: Rotating Secrets

Next topic: Rotating a Secret for a User

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.