Oracle Cloud Infrastructure Documentation

Canceling the Scheduled Deletion of a Secret Version

Learn how to cancel the scheduled deletion of a secret version stored in an OCI vault.

    1. Open the navigation menu , select Identity & Security, and then select Vault.
    2. Under List Scope, in the Compartment list, select the name of the compartment that contains the vault that has the secret with the secret version you no longer want to delete.

    3. From the list of vaults in the compartment, select the vault name.

    4. Select Secrets, locate the secret with the secret version for which you want to cancel deletion, and then click the secret name. (If needed, first change the list scope to the compartment that contains the secret.)
    5. Under Secret Versions List, locate the secret version, and then select the Actions menu (Actions Menu) for that secret version.
    6. In the Actions menu (Actions Menu), select Cancel Deletion.
    7. Confirm that you want to cancel the secret version's deletion by selecting Cancel Deletion. Access to the secret version and any resources or services that used its contents can be restored after the secret version returns to active, current use.

  • Open a command prompt and run oci vault secret-version cancel-deletion to cancel the scheduled deletion of a secret version:

    oci vault secret-version cancel-deletion --secret-id <target_secret_id> --secret-version-number <target_secret_version_number>

    For example:

    
oci vault secret-version cancel-deletion --secret-id ocid1.vaultsecret.oc1.iad.exampleaz5qacpqahuecvbjqzql4qmpbrtd7pprafhivcfik6wuitexample --secret-version-number 1

    For a complete list of parameters and values for CLI commands, see the CLI Command Reference.

  • Use the CancelSecretVersionDeletion API with the Management Endpoint to cancel the deletion of a secret version.

    Note

    The Management Endpoint is used for management operations including Create, Update, List, Get, and Delete. The Management Endpoint is also called the control plane URL or the KMSMANAGMENT endpoint.

    The Cryptographic Endpoint is used for cryptographic operations including Encrypt, Decrypt, Generate Data Encryption Key, Sign, and Verify. The Cryptographic Endpoint is also called the data plane URL or the KMSCRYPTO endpoint.

    You can find the management and cryptographic endpoints in a vault's details metadata. See Getting a Vault's Details for instructions.

    For regional endpoints for the Key Management, Secret Management, and Secret Retrieval APIs, see API Reference and Endpoints.

    For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.