If encryption is enabled with encryption type CIPHER_TRUST_KMIP (where encryption keys are managed externally on Thales Group CipherTrust Data Security Platform), this command rotates the key encryption key for the encryption group to which a given tenant belongs. The key encryption key is used by the cluster to retrieve the data encryption key from the EKM when needed to encrypt data. Rotating the key encryption key generates a new version of the key encryption key, with the same key name and attributes.
Usage
tenant rotate-encryption-group-key --id ID
Required Parameters
| Specifies a tenant. |
Example
vcli: admin> tenant rotate-encryption-group-key --id 5 Tenants using this encryption group: tenant_1. Are you sure you want to rotate tenant's encryption group key? [y/N] y Tenant's encryption group key was rotated successfully.