Oracle Cloud Infrastructure Documentation

Promoting a Pending Secret Version to the Current Version

Learn how to promote a pending version of a secret stored in an OCI vault to the current version.

    1. On the Secret's Versions list page, find the secret version that you want to work with. If you need help finding the list page, see Listing Secret Versions
    2. Find the secret version in pending state that you want to promote, select the Actions menu Actions Menu and then select Promote to Current.
    3. Confirm the promotion.

      The version status is set as "Current" and is in active use.

  • Use the oci vault secret update or oci vault secret update-base64 command and update the secret's content stage value to promote it.

    Open a command prompt and run oci vault secret update to promote a secret version to current, active use:

    oci vault secret update --secret-id <target_secret_id> --secret-content-stage CURRENT

    For example:

    
oci vault secret update --secret-id ocid1.vaultsecret.oc1.iad.exampleaz5qacpqahuecvbjqzql4qmpbrtd7pprafhivcfik6wuitexample --secret-content-stage CURRENT

    For a complete list of parameters and values for CLI commands, see the CLI Command Reference.

  • Use the UpdateSecret API with the Management Endpoint and update the secret's "stage" value in the secret's contents to promote it.

    Note

    The Management Endpoint is used for management operations including Create, Update, List, Get, and Delete. The Management Endpoint is also called the control plane URL or the KMSMANAGEMENT endpoint.

    The Cryptographic Endpoint is used for cryptographic operations including Encrypt, Decrypt, Generate Data Encryption Key, Sign, and Verify. The Cryptographic Endpoint is also called the data plane URL or the KMSCRYPTO endpoint.

    You can find the management and cryptographic endpoints in a vault's details metadata. See Getting a Vault's Details for instructions.

    For regional endpoints for the Key Management, Secret Management, and Secret Retrieval APIs, see API Reference and Endpoints.

    For information about using the API and signing requests, see REST API documentation and Security Credentials. For information about SDKs, see SDKs and the CLI.