Creating a Key Set for MariaDB

1. Log into the Cryptographic Security Platform Vault for Databases webGUI.

2. In the top menu bar, click CloudKeys.

3. Select Actions > Create Key Set.

4. On the Details tab of the Create Key Set dialog box, ensure that you select MariaDB Database Server for the Database type, and select the Yes radio button for Allow Key Creation from MariaDB.

   Note: If set to Yes, when MariaDB tries to fetch a key with a keyid not present in the key set, then the vault will generate a key with the given keyid and send it to MariaDB. If set to No, fetching the key will fail because the keyid is not available.

5. If you have an HSM, ensure that you set the properties for the HSM.

6. Set the CloudKey rotation schedule.

For more information, see Creating a Key Set for TDE.