Revoke Encryption Key

You can revoke an encryption key. This process is different that rotating a key due to a business requirement (see Rotate Encryption Key). Revoking a key erases the key value. The application is not able to read encrypted data once a key has been revoked. You can create a new key to decrypt the data after a key value is revoked.

  1. Navigate to the Home page in the Manager view.
  2. Click .
  3. In the Key Management area, click .
  4. Optionally, select the Decrypt data before the key is revoked check box to remove any encryption. If you do not select this option, the key value is erased and the application is not able to read the encrypted data.
  5. Click .