This tutorial is a step-by-step guide on creating and managing encryption keys in the DevOps Secret Manager of Segura.
Requirements
- You must have the necessary permissions in the role to which it is associated.
Add an Encryption key
- On Segura, in the navigation bar, hover over the Products menu and select DevOps Secret Manager.
- On the side menu, select Encryption > Encryption keys.
- Click the Add button.
- On the Ass encryption key screen, fill in the following fields:
- Name*: name of the cryptographic key.
- Encryption algorithm*: choose the encryption algorithm.
- Expiration date: key expiration date and time.
- Active: check to enable the key.
- Description: description associated with the key.
- Click Save.
View Encryption key details
- On the Encryption key report, click the Action button and select Details.
- In the open pop-up window, you can view the fields Name, Version, Encryption algorithm, Expiration date, Active, and Description.
Info
With each key update, the version field will also be updated; the version statement can be accessed through the button Show versions inside the three vertical dots icon in the column Action.
How to Encrypt data
- On the Encryption key report, click the Action button and select Operate.
- Select the Encryption tab.
- Type the data you want to encrypt on the Value to encrypt field.
- Click the Encrypt button.
- The field Encrypted value will display the encrypted value for your data.
In the menu Events > Audit Tracking, it’s possible to check the logs for each encryption attempt.
How to decrypt data
Info
The key must contain the same encryption algorithm for decryption to be performed.
- On the Encryption key report, click the Action button and select Operate.
- Select the Decrypt tab.
- Type the data you want to encrypt on the Value to decrypt field.
- Click the Decrypt button.
- The field Decrypted value will display the encrypted value.