Defining Keys in ParmlibIn-House KeysKey Deactivation › Mark All Instances of a Key as Compromised

Previous Topic: Mark a Currently Active Key as Compromised

Next Topic: Specify a Schedule for Changing In-House Keys

Mark All Instances of a Key as Compromised

Use the COMPROMISE= command with the ALL option to mark as compromised all instances of a key.

To mark all instances of a key as compromised

Enter the following console command:

BESn COMPROMISE=keyname,ALL
n

Indicates the BES task number.

keyname

Specifies the name of the key you want to mark as compromised.

ALL

Specifies all the versions of the key indicated by the keyname value.

All instances of the named key are marked as compromised. If the number of keys specified in the NumberOfGenerations attribute is n, then n + 1 new instances of the key are automatically generated.