Skip to main content

otdfctl policy kas-registry delete

delete - Delete a Key Access Server registration

Synopsis

otdfctl policy kas-registry delete [flags]

Description

Removes knowledge of a KAS (registration) from a platform's policy.

If resource data has been TDFd utilizing key splits from the registered KAS, deletion from the registry (and therefore any associated grants) may prevent decryption depending on the type of grants and relevant key splits.

Make sure you know what you are doing.

For more information about registration of Key Access Servers, see the manual for kas-registry.

Options

-i, --id <id>
ID of the Key Access Server registration (required: true)
--force <force>
Force deletion without interactive confirmation (dangerous) (required: false)