Login with root token.
Click on the command (
⮐) will automatically copy it into the terminal and execute it.
vault login root
transit secrets engine must be configured before it can perform its operations. These steps are usually done by an operator or configuration management tool.
First, enable the
transit secrets engine by executing the following command:
vault secrets enable transit
By default, the secrets engine will mount at the name of the engine. If you wish to enable it at a different path, use the
vault secrets enable -path=encryption transit
Run the following command to verify that the
transit secrets engine has been enabled at
vault secrets list
Now, create an encryption key ring named, "orders" by executing the following command:
vault write -f transit/keys/orders
NOTE: Typically, you want to create an encryption key ring for each application.
transit secrets engine is ready to use!