Delete Symmetric Key (DLTSYMKEY)

The DLTSYMKEY command allows authorized users to delete a Data Encryption Key (Symmetric Key) from a Key Store.

NOTE: By default, the Key Policy does not allow the deletion of keys.

WARNING: Do not delete keys that may be needed to decrypt existing data.

The following users can use the DLTSYMKEY command:

QSECOFR user profile (unless excluded in the Key Officer settings)
A user profile with *SECADM authority (unless excluded in the Key Officer settings)
A Key Officer that has a *YES specified for the “Maintain DEKs” authority setting

The user must have *CHANGE authority to the Validation List (*VLDL) object containing the Key Store(s) from which the Key will be deleted, and *USE authority to the library that contains the Key Store.

Before a Key is deleted, the Validation List (*VLDL) object, which contains the Key Store, is backed up into a Save File object (sequentially named) within the Powertech Encryption for IBM i library.

How to Get There

From the Symmetric Encryption Key Menu, choose option 16.

Options

Key label (KEYLABEL)

Indicate the unique name (label) of the Symmetric Key to delete.

Key store name (KEYSTR)

Indicate the object name and library of the Key Store which contains the Symmetric Key to delete.

The possible values are:

key-store-name Enter the name of the Key Store.

*DEFAULT Use the default Key Store name specified at the Key Policy level.

The possible library values are:

library-name Enter the name of the library where the Key Store is located.

Copyright © Fortra, LLC and its group of companies.
All trademarks and registered trademarks are the property of their respective owners.
4.0 | 202307100156 | July 2023