admin管理员组文章数量:1128019
i have a key created in a GCP project using Cloud Kms, i use it to encrypt some data but at the time it was created it was done on a single region and now i would want to make it multi regional.
Is this possible to do without having to create a brand new key and re-encrypt everything again?
I tried searching for a way to export the key in order to upload it again as multi regional but was unable to find a way to do it.
i have a key created in a GCP project using Cloud Kms, i use it to encrypt some data but at the time it was created it was done on a single region and now i would want to make it multi regional.
Is this possible to do without having to create a brand new key and re-encrypt everything again?
I tried searching for a way to export the key in order to upload it again as multi regional but was unable to find a way to do it.
Share Improve this question asked Jan 8 at 15:44 liquid_millerliquid_miller 31 bronze badge New contributor liquid_miller is a new contributor to this site. Take care in asking for clarification, commenting, and answering. Check out our Code of Conduct.2 Answers
Reset to default 0I don't see an alternative to creating a new key and re-encrypting if you want to change the regional availability of your key. There's no key export nor is there such a migration feature.
It is not possible to migrate an existing single-region Cloud KMS key to a multi-regional configuration without creating a new key and re-encrypting the data. This is due to the security policies and the fixed regionality property of the keys. It is not explicitly mentioned in the docs, but somewhere in the creation process, there are detailed instructions about this.
本文标签: Migrate GCP Cloud Kms key from single region to multi regionalStack Overflow
版权声明:本文标题:Migrate GCP Cloud Kms key from single region to multi regional - Stack Overflow 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1736708912a1948831.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。
发表评论