You may have situations where you want to change or rotate an encryption key. Rotating the encryption key on a regular basis can help reduce risk for a number of data security scenarios.
Rotate a key
When you rotate a key, you can choose to generate or upload a new key. When you choose to upload, you can use a wrapped or plain text key.
Note: You must provide your existing key material in order to rotate away from an uploaded key. If the plain text key doesn't match the previous key, you will not be allowed to rotate, remove, or switch to a wrapped key.
To rotate to a key generated by Workiva:
- From Organization Admin, click Security and go to Key Management.
- Click Rotate Key and select Generate new key.
- Click Browse to locate the file that contains the existing key material.
- Click Rotate Key.