Help Center/ Data Encryption Workshop/ User Guide (Kuala Lumpur Region)/ Cloud Secret Management Service/ Creating a Secret/ Creating a Shared Secret
Updated on 2025-12-02 GMT+08:00
View PDF
Share

Creating a Shared Secret

This section describes how to create a secret on the CSMS console.

You can create a secret and store its value in its initial version, which is marked as SYSCURRENT.

Constraints

  • A user can create a maximum of 200 secrets.
  • By default, the default key csms/default created by CSMS is used as the encryption key of the current secret. You can also create a user-defined symmetric key and use a user-defined encryption key on the KMS console.

Creating a Secret

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click on the left and choose Security > Data Encryption Workshop.
  4. In the navigation pane on the left, choose Cloud Secret Management Service.
  5. Click Create Secret. Configure parameters in the Create Secret dialog box. For details about the parameters, see Table 1.

    Table 1 Secret parameters

    Parameter

    Description

    Type

    Secret type. The default value is Shared secret.

    Secret Name

    Secret name

    NOTE:

    Only letters, digits, periods (.), hyphens (-), and underscores (_) are allowed.

    Enterprise Project

    This parameter is provided for enterprise users. If you are an enterprise user and have created an enterprise project, select the required enterprise project from the drop-down list. The default project is default.

    NOTE:

    If you have not enabled enterprise management, this parameter will not be displayed.

    Secret Value

    Secret key/value pair or the plaintext secret to be encrypted

    KMS Encryption Key
    The following modes are supported:
    • Select from list: Select this if you want to use the key used or shared by the current account. Select the default key csms/default or a custom key created on KMS.
    • Enter: Enter the ID of the authorized key. Enter an encryption key if an authorized key is used. Only symmetric algorithm key IDs are supported. Do not enter an asymmetric key ID.
    NOTE:
    • CSMS encrypts secret values using the encryption key provided by KMS. When you use the KMS encryption function, KMS creates a default key csms/default for you to use.
    • For details about how to create a custom key on KMS, see .

  6. Click Next.
  7. Click Next and confirm the creation information.
  8. Click OK. In the secret list, you can view the created secrets. The default status of a secret is Enabled.
Parent topic: Creating a Secret