User's Guide: Key Move

1.0 Introduction

This article describes the steps to move a key from one Fortanix-Data-Security-Manager (DSM) group to another thereby modifying the group that the key belongs to.

2.0 Move Key

The Key Move feature of Fortanix DSM will allow the users to move a Security-object from a standard Fortanix DSM group to another standard Fortanix DSM group.

The following actions will happen as part of the key move operation:

The key will be moved from the source group to the target group: The new key will have the same key material as the original key.
The key links will remain with the source group and will not be moved to the target group when the key material is moved. Key links must be updated to use the new group that the key material resides in.
The Key Rotation Policy also moves to the target group along with the key.

NOTE
The key move operation is applicable for keys in Fortanix DSM groups only.
The key move operation is applicable for all the key types.
You can move keys only between two Fortanix DSM groups.
The key has to satisfy the target group’s Cryptographic-policy in order for the move to be successful.
You must have “write” access to both groups to perform the key move operation.
The key can be moved in any state except the DELETED state.
If there is a quorum policy associated with the source group, then it applies. Otherwise, group change is immediate.
If the key is moved to a group with a different Key Undo Policy, then the Key Undo Policy of the target group applies to the key.
If the key is moved to a group without a Key Undo Policy, then the existing Key Undo Policy of the source group stays in the source group.
The users, apps, and plugins of the source group will no longer have access to the key once the group is changed.

To move a key:

Go to the key detailed view. In the INFO tab, under the Group section, click CHANGE GROUP to initiate the key move operation.
Figure 1: Initiate key move
In the CHANGE GROUP dialog:
1. Select the destination group to move the key to.
2. Select the The users, apps, and plugins of the source group will no longer have access to the key once the group is changed. All key links will be lost once the ky is moved to the new group. check box.
3. Click SAVE to move the key to the new group.
Figure 2: Change group

User's Guide: Key Move

1.0 Introduction

2.0 Move Key

PLATFORM

Key Insight

Data Security Manager™

Confidential Computing Manager

Enclave Development Platform®

Request A demo

Contact Us

Free Trial

SOLUTIONS

AWS KMS External Key Store (XKS)

Google External Key Manager

Bring Your Own Key (BYOK)

HSM Modernization

Multicloud Key Management

Post Quantum Cryptography

Code Signing

Secrets Management

Tokenization Transparent

Database Encryption

Filesystem Encryption

Confidential Data Search

Confidential AI

Healthcare

Banking & Financial Services

Fintech

Manufacturing

Web 3.0

Federal Government

RESOURCES

Blog

Whitepapers

Datasheets

Solution Briefs

Ebooks

Reports

Case Studies

Webinars

University

Media Kit

Newsletters

COMPANY

About

Careerswe’re hiring

Customers

Partners

Awards

Events

Press

News

Services

Support

FAQ

4.6