Create a key rotation
You require the Manage keypair
permission to create a key rotation.
Sign in to DigiCert ONE.
Select the Manager menu (top right) > Software Trust.
Navigate to: Keypairs > Key rotations.
Select Create key rotation.
Complete the following fields:
Field | Description |
---|---|
Rotation name | Enter a name that easily identifies which rotation you are using. |
Team This field displays when teams are enabled. | Select the team that should have access to this key rotation. NoteKeypairs available for selection are limited to the keypairs assigned to the team selected. |
Select keypairs | Select between 2 and 10 keypairs to cycle during the rotation. NoteOnly production keypairs with a default certificate are available for selection. |
Rotation frequency | Determine how often the keys should rotate. |
Keypair status | Select Online to rotate keypairs that can be used to sign at any time. |
Select Offline to rotate keypairs that can only be used to sign during a release window. | |
Access | Select Open to allow any user within your account access to the keypair rotation. |
Select Restricted to limit access to the keypair rotation to specified users, user group, or team. | |
Allowed users | Select individual validated users that can use this key rotation. |
Allowed user groups | Select groups of users that can use this key rotation. |