Updated on 2024-12-19 GMT+08:00

Managing Secret Version Statuses

This section describes how to add, change, and delete secret version statuses.

Secret values are encrypted and stored in secret versions. A version can have multiple statuses. Versions without any statuses are regarded as deprecated and can be automatically deleted by CSMS.

Constraints

  • The initial version is marked by the SYSCURRENT status tag.
  • You can mark a version with a tag created in the service or a custom tag. A version can have multiple status tags, but a status tag can be used for only one version. For example, if you add the status tag used by version A to version B, the tag will be moved from version A to version B.
  • A secret can have up to 12 version statuses. A status can be used for only one version.
  • SYSCURRENT and SYSPREVIOUS are preconfigured statuses and cannot be deleted.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click on the left. Choose Security & Compliance > Data Encryption Workshop.
  4. In the navigation pane on the left, choose Cloud Secret Management Service > Secrets. The Cloud Secret Management Service page is displayed.
  5. Click a secret name to go to the details page.
  6. In the Version List area, click Manage Status in the Operation column.
  7. In the Manage Status dialog box, add, change, or delete the status of a secret version.

    Figure 1 Managing statuses
    • Adding a version status

      In the Manage Status dialog box, click Add and enter a status name. Click OK.

      A secret can have up to 12 version statuses. A status can be used for only one version.

    • Updating the version status

      In the Manage Status dialog box, click Change and select an existing version status. Click OK.

    • Deleting the version status

      In the Manage Status dialog box, click Delete and select a version status. Click OK.

      SYSCURRENT and SYSPREVIOUS are preconfigured statuses and cannot be deleted.