Docs Home Pulumi IaC Pulumi ESC Pulumi Insights Pulumi Cloud Packages Tutorials
  1. Packages
  2. Oracle Cloud Infrastructure
  3. API Docs
  4. Kms
  5. KeyVersion
Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi
pulumi/pulumi-oci

oci.Kms.KeyVersion

Explore with Pulumi AI

oci logo
Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi
pulumi/pulumi-oci

    This resource provides the Key Version resource in Oracle Cloud Infrastructure Kms service.

    Generates a new KeyVersion resource that provides new cryptographic material for a master encryption key. The key must be in an ENABLED state to be rotated.

    As a management operation, this call is subject to a Key Management limit that applies to the total number of requests across all management write operations. Key Management might throttle this call to reject an otherwise valid request when the total rate of management write operations exceeds 10 requests per second for a given tenancy.

    Create KeyVersion Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new KeyVersion(name: string, args: KeyVersionArgs, opts?: CustomResourceOptions);
    @overload
def KeyVersion(resource_name: str,
               args: KeyVersionArgs,
               opts: Optional[ResourceOptions] = None)

@overload
def KeyVersion(resource_name: str,
               opts: Optional[ResourceOptions] = None,
               key_id: Optional[str] = None,
               management_endpoint: Optional[str] = None,
               external_key_version_id: Optional[str] = None,
               time_of_deletion: Optional[str] = None)
    func NewKeyVersion(ctx *Context, name string, args KeyVersionArgs, opts ...ResourceOption) (*KeyVersion, error)
    public KeyVersion(string name, KeyVersionArgs args, CustomResourceOptions? opts = null)
    public KeyVersion(String name, KeyVersionArgs args)
public KeyVersion(String name, KeyVersionArgs args, CustomResourceOptions options)

    type: oci:Kms:KeyVersion
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

    Parameters

    name string
    The unique name of the resource.
    args KeyVersionArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args KeyVersionArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args KeyVersionArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args KeyVersionArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args KeyVersionArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var keyVersionResource = new Oci.Kms.KeyVersion("keyVersionResource", new()
{
    KeyId = "string",
    ManagementEndpoint = "string",
    ExternalKeyVersionId = "string",
    TimeOfDeletion = "string",
});

    example, err := kms.NewKeyVersion(ctx, "keyVersionResource", &kms.KeyVersionArgs{
	KeyId:                pulumi.String("string"),
	ManagementEndpoint:   pulumi.String("string"),
	ExternalKeyVersionId: pulumi.String("string"),
	TimeOfDeletion:       pulumi.String("string"),
})

    var keyVersionResource = new KeyVersion("keyVersionResource", KeyVersionArgs.builder()
    .keyId("string")
    .managementEndpoint("string")
    .externalKeyVersionId("string")
    .timeOfDeletion("string")
    .build());

    key_version_resource = oci.kms.KeyVersion("keyVersionResource",
    key_id="string",
    management_endpoint="string",
    external_key_version_id="string",
    time_of_deletion="string")

    const keyVersionResource = new oci.kms.KeyVersion("keyVersionResource", {
    keyId: "string",
    managementEndpoint: "string",
    externalKeyVersionId: "string",
    timeOfDeletion: "string",
});

    type: oci:Kms:KeyVersion
properties:
    externalKeyVersionId: string
    keyId: string
    managementEndpoint: string
    timeOfDeletion: string

    KeyVersion Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The KeyVersion resource accepts the following input properties:

    KeyId string
    The OCID of the key.
    ManagementEndpoint string
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    ExternalKeyVersionId string
    Key version ID associated with the external key.
    TimeOfDeletion string

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    KeyId string
    The OCID of the key.
    ManagementEndpoint string
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    ExternalKeyVersionId string
    Key version ID associated with the external key.
    TimeOfDeletion string

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    keyId String
    The OCID of the key.
    managementEndpoint String
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    externalKeyVersionId String
    Key version ID associated with the external key.
    timeOfDeletion String

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    keyId string
    The OCID of the key.
    managementEndpoint string
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    externalKeyVersionId string
    Key version ID associated with the external key.
    timeOfDeletion string

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    key_id str
    The OCID of the key.
    management_endpoint str
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    external_key_version_id str
    Key version ID associated with the external key.
    time_of_deletion str

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    keyId String
    The OCID of the key.
    managementEndpoint String
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    externalKeyVersionId String
    Key version ID associated with the external key.
    timeOfDeletion String

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    Outputs

    All input properties are implicitly available as output properties. Additionally, the KeyVersion resource produces the following output properties:

    CompartmentId string
    The OCID of the compartment that contains this key version.
    ExternalKeyReferenceDetails List<KeyVersionExternalKeyReferenceDetail>
    Key reference data to be returned to the customer as a response.
    Id string
    The provider-assigned unique ID for this managed resource.
    IsAutoRotated bool
    An optional property indicating whether this keyversion is generated from auto rotatation.
    IsPrimary bool
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    KeyVersionId string
    PublicKey string
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    ReplicaDetails List<KeyVersionReplicaDetail>
    KeyVersion replica details
    RestoredFromKeyId string
    RestoredFromKeyVersionId string
    The OCID of the key version from which this key version was restored.
    State string
    The key version's current lifecycle state. Example: ENABLED
    TimeCreated string
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    VaultId string
    The OCID of the vault that contains this key version.
    CompartmentId string
    The OCID of the compartment that contains this key version.
    ExternalKeyReferenceDetails []KeyVersionExternalKeyReferenceDetail
    Key reference data to be returned to the customer as a response.
    Id string
    The provider-assigned unique ID for this managed resource.
    IsAutoRotated bool
    An optional property indicating whether this keyversion is generated from auto rotatation.
    IsPrimary bool
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    KeyVersionId string
    PublicKey string
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    ReplicaDetails []KeyVersionReplicaDetail
    KeyVersion replica details
    RestoredFromKeyId string
    RestoredFromKeyVersionId string
    The OCID of the key version from which this key version was restored.
    State string
    The key version's current lifecycle state. Example: ENABLED
    TimeCreated string
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    VaultId string
    The OCID of the vault that contains this key version.
    compartmentId String
    The OCID of the compartment that contains this key version.
    externalKeyReferenceDetails List<KeyVersionExternalKeyReferenceDetail>
    Key reference data to be returned to the customer as a response.
    id String
    The provider-assigned unique ID for this managed resource.
    isAutoRotated Boolean
    An optional property indicating whether this keyversion is generated from auto rotatation.
    isPrimary Boolean
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    keyVersionId String
    publicKey String
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    replicaDetails List<KeyVersionReplicaDetail>
    KeyVersion replica details
    restoredFromKeyId String
    restoredFromKeyVersionId String
    The OCID of the key version from which this key version was restored.
    state String
    The key version's current lifecycle state. Example: ENABLED
    timeCreated String
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    vaultId String
    The OCID of the vault that contains this key version.
    compartmentId string
    The OCID of the compartment that contains this key version.
    externalKeyReferenceDetails KeyVersionExternalKeyReferenceDetail[]
    Key reference data to be returned to the customer as a response.
    id string
    The provider-assigned unique ID for this managed resource.
    isAutoRotated boolean
    An optional property indicating whether this keyversion is generated from auto rotatation.
    isPrimary boolean
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    keyVersionId string
    publicKey string
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    replicaDetails KeyVersionReplicaDetail[]
    KeyVersion replica details
    restoredFromKeyId string
    restoredFromKeyVersionId string
    The OCID of the key version from which this key version was restored.
    state string
    The key version's current lifecycle state. Example: ENABLED
    timeCreated string
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    vaultId string
    The OCID of the vault that contains this key version.
    compartment_id str
    The OCID of the compartment that contains this key version.
    external_key_reference_details Sequence[KeyVersionExternalKeyReferenceDetail]
    Key reference data to be returned to the customer as a response.
    id str
    The provider-assigned unique ID for this managed resource.
    is_auto_rotated bool
    An optional property indicating whether this keyversion is generated from auto rotatation.
    is_primary bool
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    key_version_id str
    public_key str
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    replica_details Sequence[KeyVersionReplicaDetail]
    KeyVersion replica details
    restored_from_key_id str
    restored_from_key_version_id str
    The OCID of the key version from which this key version was restored.
    state str
    The key version's current lifecycle state. Example: ENABLED
    time_created str
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    vault_id str
    The OCID of the vault that contains this key version.
    compartmentId String
    The OCID of the compartment that contains this key version.
    externalKeyReferenceDetails List<Property Map>
    Key reference data to be returned to the customer as a response.
    id String
    The provider-assigned unique ID for this managed resource.
    isAutoRotated Boolean
    An optional property indicating whether this keyversion is generated from auto rotatation.
    isPrimary Boolean
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    keyVersionId String
    publicKey String
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    replicaDetails List<Property Map>
    KeyVersion replica details
    restoredFromKeyId String
    restoredFromKeyVersionId String
    The OCID of the key version from which this key version was restored.
    state String
    The key version's current lifecycle state. Example: ENABLED
    timeCreated String
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    vaultId String
    The OCID of the vault that contains this key version.

    Look up Existing KeyVersion Resource

    Get an existing KeyVersion resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: KeyVersionState, opts?: CustomResourceOptions): KeyVersion
    @staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        compartment_id: Optional[str] = None,
        external_key_reference_details: Optional[Sequence[KeyVersionExternalKeyReferenceDetailArgs]] = None,
        external_key_version_id: Optional[str] = None,
        is_auto_rotated: Optional[bool] = None,
        is_primary: Optional[bool] = None,
        key_id: Optional[str] = None,
        key_version_id: Optional[str] = None,
        management_endpoint: Optional[str] = None,
        public_key: Optional[str] = None,
        replica_details: Optional[Sequence[KeyVersionReplicaDetailArgs]] = None,
        restored_from_key_id: Optional[str] = None,
        restored_from_key_version_id: Optional[str] = None,
        state: Optional[str] = None,
        time_created: Optional[str] = None,
        time_of_deletion: Optional[str] = None,
        vault_id: Optional[str] = None) -> KeyVersion
    func GetKeyVersion(ctx *Context, name string, id IDInput, state *KeyVersionState, opts ...ResourceOption) (*KeyVersion, error)
    public static KeyVersion Get(string name, Input<string> id, KeyVersionState? state, CustomResourceOptions? opts = null)
    public static KeyVersion get(String name, Output<String> id, KeyVersionState state, CustomResourceOptions options)
    resources:  _:    type: oci:Kms:KeyVersion    get:      id: ${id}
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    CompartmentId string
    The OCID of the compartment that contains this key version.
    ExternalKeyReferenceDetails List<KeyVersionExternalKeyReferenceDetail>
    Key reference data to be returned to the customer as a response.
    ExternalKeyVersionId string
    Key version ID associated with the external key.
    IsAutoRotated bool
    An optional property indicating whether this keyversion is generated from auto rotatation.
    IsPrimary bool
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    KeyId string
    The OCID of the key.
    KeyVersionId string
    ManagementEndpoint string
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    PublicKey string
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    ReplicaDetails List<KeyVersionReplicaDetail>
    KeyVersion replica details
    RestoredFromKeyId string
    RestoredFromKeyVersionId string
    The OCID of the key version from which this key version was restored.
    State string
    The key version's current lifecycle state. Example: ENABLED
    TimeCreated string
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    TimeOfDeletion string

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    VaultId string
    The OCID of the vault that contains this key version.
    CompartmentId string
    The OCID of the compartment that contains this key version.
    ExternalKeyReferenceDetails []KeyVersionExternalKeyReferenceDetailArgs
    Key reference data to be returned to the customer as a response.
    ExternalKeyVersionId string
    Key version ID associated with the external key.
    IsAutoRotated bool
    An optional property indicating whether this keyversion is generated from auto rotatation.
    IsPrimary bool
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    KeyId string
    The OCID of the key.
    KeyVersionId string
    ManagementEndpoint string
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    PublicKey string
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    ReplicaDetails []KeyVersionReplicaDetailArgs
    KeyVersion replica details
    RestoredFromKeyId string
    RestoredFromKeyVersionId string
    The OCID of the key version from which this key version was restored.
    State string
    The key version's current lifecycle state. Example: ENABLED
    TimeCreated string
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    TimeOfDeletion string

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    VaultId string
    The OCID of the vault that contains this key version.
    compartmentId String
    The OCID of the compartment that contains this key version.
    externalKeyReferenceDetails List<KeyVersionExternalKeyReferenceDetail>
    Key reference data to be returned to the customer as a response.
    externalKeyVersionId String
    Key version ID associated with the external key.
    isAutoRotated Boolean
    An optional property indicating whether this keyversion is generated from auto rotatation.
    isPrimary Boolean
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    keyId String
    The OCID of the key.
    keyVersionId String
    managementEndpoint String
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    publicKey String
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    replicaDetails List<KeyVersionReplicaDetail>
    KeyVersion replica details
    restoredFromKeyId String
    restoredFromKeyVersionId String
    The OCID of the key version from which this key version was restored.
    state String
    The key version's current lifecycle state. Example: ENABLED
    timeCreated String
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    timeOfDeletion String

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    vaultId String
    The OCID of the vault that contains this key version.
    compartmentId string
    The OCID of the compartment that contains this key version.
    externalKeyReferenceDetails KeyVersionExternalKeyReferenceDetail[]
    Key reference data to be returned to the customer as a response.
    externalKeyVersionId string
    Key version ID associated with the external key.
    isAutoRotated boolean
    An optional property indicating whether this keyversion is generated from auto rotatation.
    isPrimary boolean
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    keyId string
    The OCID of the key.
    keyVersionId string
    managementEndpoint string
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    publicKey string
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    replicaDetails KeyVersionReplicaDetail[]
    KeyVersion replica details
    restoredFromKeyId string
    restoredFromKeyVersionId string
    The OCID of the key version from which this key version was restored.
    state string
    The key version's current lifecycle state. Example: ENABLED
    timeCreated string
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    timeOfDeletion string

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    vaultId string
    The OCID of the vault that contains this key version.
    compartment_id str
    The OCID of the compartment that contains this key version.
    external_key_reference_details Sequence[KeyVersionExternalKeyReferenceDetailArgs]
    Key reference data to be returned to the customer as a response.
    external_key_version_id str
    Key version ID associated with the external key.
    is_auto_rotated bool
    An optional property indicating whether this keyversion is generated from auto rotatation.
    is_primary bool
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    key_id str
    The OCID of the key.
    key_version_id str
    management_endpoint str
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    public_key str
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    replica_details Sequence[KeyVersionReplicaDetailArgs]
    KeyVersion replica details
    restored_from_key_id str
    restored_from_key_version_id str
    The OCID of the key version from which this key version was restored.
    state str
    The key version's current lifecycle state. Example: ENABLED
    time_created str
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    time_of_deletion str

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    vault_id str
    The OCID of the vault that contains this key version.
    compartmentId String
    The OCID of the compartment that contains this key version.
    externalKeyReferenceDetails List<Property Map>
    Key reference data to be returned to the customer as a response.
    externalKeyVersionId String
    Key version ID associated with the external key.
    isAutoRotated Boolean
    An optional property indicating whether this keyversion is generated from auto rotatation.
    isPrimary Boolean
    A Boolean value that indicates whether the KeyVersion belongs to primary Vault or replica Vault.
    keyId String
    The OCID of the key.
    keyVersionId String
    managementEndpoint String
    The service endpoint to perform management operations against. Management operations include 'Create,' 'Update,' 'List,' 'Get,' and 'Delete' operations. See Vault Management endpoint.
    publicKey String
    The public key in PEM format. (This value pertains only to RSA and ECDSA keys.)
    replicaDetails List<Property Map>
    KeyVersion replica details
    restoredFromKeyId String
    restoredFromKeyVersionId String
    The OCID of the key version from which this key version was restored.
    state String
    The key version's current lifecycle state. Example: ENABLED
    timeCreated String
    The date and time this key version was created, expressed in RFC 3339 timestamp format. Example: "2018-04-03T21:10:29.600Z"
    timeOfDeletion String

    (Updatable) An optional property for the deletion time of the key version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    vaultId String
    The OCID of the vault that contains this key version.

    Supporting Types

    KeyVersionExternalKeyReferenceDetail, KeyVersionExternalKeyReferenceDetailArgs

    ExternalKeyId string
    ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
    ExternalKeyVersionId string
    Key version ID associated with the external key.
    ExternalKeyId string
    ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
    ExternalKeyVersionId string
    Key version ID associated with the external key.
    externalKeyId String
    ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
    externalKeyVersionId String
    Key version ID associated with the external key.
    externalKeyId string
    ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
    externalKeyVersionId string
    Key version ID associated with the external key.
    external_key_id str
    ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
    external_key_version_id str
    Key version ID associated with the external key.
    externalKeyId String
    ExternalKeyId refers to the globally unique key Id associated with the key created in external vault in CTM.
    externalKeyVersionId String
    Key version ID associated with the external key.

    KeyVersionReplicaDetail, KeyVersionReplicaDetailArgs

    ReplicationId string
    ReplicationId associated with a key version operation
    ReplicationId string
    ReplicationId associated with a key version operation
    replicationId String
    ReplicationId associated with a key version operation
    replicationId string
    ReplicationId associated with a key version operation
    replication_id str
    ReplicationId associated with a key version operation
    replicationId String
    ReplicationId associated with a key version operation

    Import

    KeyVersions can be imported using the id, e.g.

    $ pulumi import oci:Kms/keyVersion:KeyVersion test_key_version "managementEndpoint/{managementEndpoint}/keys/{keyId}/keyVersions/{keyVersionId}"

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    oci pulumi/pulumi-oci
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the oci Terraform Provider.
    oci logo
    Oracle Cloud Infrastructure v2.33.0 published on Thursday, May 1, 2025 by Pulumi
    pulumi/pulumi-oci