Create Key Set for AWS XKS
To create a Key Set for AW XKS keys in KeyControl Vault.
- In the top menu bar, select CLOUDKEYS.
- Select the Key Sets tab and select Actions > Create Key Set.
-
Select AWS Key as key set type.
-
On the Details tab of the Create Key Set dialog box, enter the following:
Field
Description
Name Enter the name for the Key Set. Description
Enter the optional description for the Key Set.
Admin Group Select Cloud Admin Group. - Click Continue.
-
On the CSP Account tab, enter the following:
Field
Description
CSP Account Select the newly created CSP account to use with this Key Set. Enable External Key Store
Select Enable External Key Store
Copy the AWS XKS Access Key ID and Secret Access Key to notepad.
-
Copy the AWS XKS Access Key ID and Secret Access Key to notepad.
-
Select Continue.
-
On the HSM tab, you can optionally enable an HSM.
-
Select Continue.
-
On the Schedule tab, determine the default rotation schedule for the CloudKeys created in this Key Set. This can be one of the following:
- Never—The CloudKey will never be rotated.
- Once a year—The CloudKey will be rotated once a year.
- Every 6 months—The CloudKey will be rotated once every 6 months.
- Every 30 days—The CloudKey will be rotated once every 30 days.
- Other—The CloudKey will be rotated at the interval you select.
Note: This rotation schedule is applied to all CloudKeys created in the Key Set, unless a different value is explicitly chosen. If there are existing CloudKeys in the Key Set, you can update the rotation schedule of the CloudKeys to align with your selected rotation schedule by checking Apply to all CloudKeys.
-
Click Apply
