IBM Cloud Docs
Deleting vaults

Deleting vaults

You can delete your vaults in Unified Key Orchestrator with the UI, or programmatically with the Unified Key Orchestrator API.

If you want to delete a vault, you need to delete all managed keys, delete or archive all key templates, and delete or disconnect from all keystores that are managed in the vault first. The Delete function is available for empty vaults only. Make sure to have an empty vault by referring to the following instructions:

Deleting vaults with the UI

By deleting a vault, access groups that are assigned to this vault can no longer access the vault.

To delete a vault by using the UI, complete the following steps:

  1. Log in to the Hyper Protect Crypto Services instance.

  2. Click Vaults from the navigation to view all the available vaults.

  3. Click the vault that you want to delete. The Details side panel is displayed.

  4. Make sure that the vault does not contain any key templates, keys, or keystores, and then click Delete.

    If any archived key templates are assigned to this vault, the archived key templates are also deleted with the vault.

  5. Click Delete vault to confirm the deletion.

The vault has been deleted and removed from the vault list. Access groups that are assigned to this vault no longer have access to the vault.

Deleting vaults with the API

To delete a vault through the API, follow these steps:

  1. Retrieve your service and authentication credentials to work with vaults in the service.

  2. Delete a vault by making a DELETE call to the following endpoint.

    https://uko.<region>.hs-crypto.cloud.ibm.com:<port>/api/v4/vaults/<vault_id>

    Replace <vault_id> with the ID of your vault.

    For detailed instructions and code examples about using the API method, check out the Hyper Protect Crypto Services Unified Key Orchestrator API reference doc.

What's next