Skip to main content

Create a key rotation

You require the Manage keypair permission to create a key rotation.

  1. Sign in to DigiCert ONE.

  2. Select the Manager menu (top right) > Software Trust.

  3. Navigate to: Keypairs > Key rotations.

  4. Select Create key rotation.

  5. Complete the following fields:

Field

Description

Rotation name

Enter a name that easily identifies which rotation you are using.

Team

This field displays when teams are enabled.

Select the team that should have access to this key rotation.

Nota

Keypairs available for selection are limited to the keypairs assigned to the team selected.

Select keypairs

Select between 2 and 10 keypairs to cycle during the rotation.

Nota

Only production keypairs with a default certificate are available for selection.

Rotation frequency

Determine how often the keys should rotate.

Keypair status

Select Online to rotate keypairs that can be used to sign at any time.

Select Offline to rotate keypairs that can only be used to sign during a release window.

Access

Select Open to allow any user within your account access to the keypair rotation.

Select Restricted to limit access to the keypair rotation to specified users, user group, or team.

Allowed users

Select individual validated users that can use this key rotation.

Allowed user groups

Select groups of users that can use this key rotation.