yc kms
Written by
Updated at December 2, 2024
Manage Yandex Key Management Service resources
Command Usage
Syntax:
yc kms <group>
Command Tree
- yc kms asymmetric-encryption-crypto — Perform asymmetric encryption crypto operations
- yc kms asymmetric-encryption-crypto decrypt — Decrypt data with specified asymmetric encryption key
- yc kms asymmetric-encryption-crypto get-public-key — Get public key
- yc kms asymmetric-encryption-key — Manage asymmetric encryption keys
- yc kms asymmetric-encryption-key add-access-binding — Add access binding for the specified asymmetric encryption key
- yc kms asymmetric-encryption-key create — Create asymmetric encryption key
- yc kms asymmetric-encryption-key delete — Delete the specified asymmetric encryption key
- yc kms asymmetric-encryption-key get — Show information about the specified asymmetric encryption key
- yc kms asymmetric-encryption-key list — List asymmetric encryption keys of the specified folder
- yc kms asymmetric-encryption-key list-access-bindings — List access bindings for the specified asymmetric encryption key
- yc kms asymmetric-encryption-key list-operations — List operations for the specified asymmetric encryption key
- yc kms asymmetric-encryption-key remove-access-binding — Remove access binding for the specified asymmetric encryption key
- yc kms asymmetric-encryption-key set-access-bindings — Set access bindings for the specified asymmetric encryption key and delete all existing access bindings if there were any
- yc kms asymmetric-encryption-key update — Update the specified asymmetric encryption key
- yc kms asymmetric-signature-crypto — Perform asymmetric signature crypto operations
- yc kms asymmetric-signature-crypto get-public-key — Get public key
- yc kms asymmetric-signature-crypto sign — Sign data with specified asymmetric signature key
- yc kms asymmetric-signature-crypto sign-hash — Sign hash value with specified asymmetric signature key
- yc kms asymmetric-signature-key — Manage asymmetric signature keys
- yc kms asymmetric-signature-key add-access-binding — Add access binding for the specified asymmetric signature key
- yc kms asymmetric-signature-key create — Create asymmetric signature key
- yc kms asymmetric-signature-key delete — Delete the specified asymmetric signature key
- yc kms asymmetric-signature-key get — Show information about the specified asymmetric signature key
- yc kms asymmetric-signature-key list — List asymmetric signature keys of the specified folder
- yc kms asymmetric-signature-key list-access-bindings — List access bindings for the specified asymmetric signature key
- yc kms asymmetric-signature-key list-operations — List operations for the specified asymmetric signature key
- yc kms asymmetric-signature-key remove-access-binding — Remove access binding for the specified asymmetric signature key
- yc kms asymmetric-signature-key set-access-bindings — Set access bindings for the specified asymmetric signature key and delete all existing access bindings if there were any
- yc kms asymmetric-signature-key update — Update the specified asymmetric signature key
- yc kms symmetric-crypto — Perform symmetric crypto operations
- yc kms symmetric-crypto decrypt — Decrypt data with specified symmetric key
- yc kms symmetric-crypto encrypt — Encrypt data with specified symmetric key
- yc kms symmetric-crypto generate-data-key — Generate data key and encrypt it with specified symmetric key
- yc kms symmetric-crypto re-encrypt — Re-encrypt a ciphertext with the specified symmetric key
- yc kms symmetric-key — Manage symmetric keys
- yc kms symmetric-key add-access-binding — Add access binding for the specified symmetric key
- yc kms symmetric-key cancel-version-destruction — Cancel destruction of the scheduled for destruction symmetric key version
- yc kms symmetric-key create — Create symmetric key
- yc kms symmetric-key delete — Delete the specified symmetric key
- yc kms symmetric-key get — Show information about the specified symmetric key
- yc kms symmetric-key list — List symmetric keys of the specified folder
- yc kms symmetric-key list-access-bindings — List access bindings for the specified symmetric key
- yc kms symmetric-key list-operations — List operations for the specified symmetric key
- yc kms symmetric-key list-versions — List versions of the specified symmetric key
- yc kms symmetric-key remove-access-binding — Remove access binding for the specified symmetric key
- yc kms symmetric-key rotate — Rotate the specified symmetric key: creates a new key version and makes it the primary version
- yc kms symmetric-key schedule-version-destruction — Schedule destruction of the specified symmetric key version
- yc kms symmetric-key set-access-bindings — Set access bindings for the specified symmetric key and delete all existing access bindings if there were any
- yc kms symmetric-key set-primary-version — Set primary version of the specified symmetric key
- yc kms symmetric-key update — Update the specified symmetric key
Global Flags
| Flag | Description |
|---|---|
--profile |
stringSet the custom configuration file. |
--debug |
Debug logging. |
--debug-grpc |
Debug gRPC logging. Very verbose, used for debugging connection problems. |
--no-user-output |
Disable printing user intended output to stderr. |
--retry |
intEnable gRPC retries. By default, retries are enabled with maximum 5 attempts. Pass 0 to disable retries. Pass any negative value for infinite retries. Even infinite retries are capped with 2 minutes timeout. |
--cloud-id |
stringSet the ID of the cloud to use. |
--folder-id |
stringSet the ID of the folder to use. |
--folder-name |
stringSet the name of the folder to use (will be resolved to id). |
--endpoint |
stringSet the Cloud API endpoint (host:port). |
--token |
stringSet the OAuth token to use. |
--impersonate-service-account-id |
stringSet the ID of the service account to impersonate. |
--no-browser |
Disable opening browser for authentication. |
--format |
stringSet the output format: text (default), yaml, json, json-rest. |
--jq |
stringQuery to select values from the response using jq syntax |
-h,--help |
Display help for the command. |