LIST.KEYS

LIST.KEYS

Top  Previous  Next

 

The LIST.KEYS command lists details of encryption keys.

 

 

Format

 

LIST.KEYS {LPTR {unit}}

LIST.KEYS filename {LPTR {unit}}

 

where

 

filenameis the name of the file to be reported.

 

 

The first form of the LIST.KEYS command is available only to users with administrator rights in the QMSYS account. It produces a report of the encryption key names defined in the key vault, showing the encryption algorithm name and the users who have access to the key. The actual encryption key is not reported. The user will be asked to enter the master key unless it has already been entered during this session. The key name is shown with an asterisk suffix if it is a secure password protected key (see CREATE.SECURE.KEY)

 

The second form of the LIST.KEYS command is available to all users and produces a report of the encryption keys used by the named file.

 

In either form, the LPTR keyword can be used to direct the output to a printer. If the print unit number is omitted, the default printer (unit 0) is used.

 

 

Examples

 

LIST.KEYS

  Key..............  Algorithm  Users.............. Groups.............

  CARDNO*            AES128     jsmith

                                bjones

  RHKEY              AES256     jsmart

 

The above example shows the report from the first format of the LIST.KEYS command. There are two encryption keys defined on this system. The CARDNO key is password protected.

 

 

LIST.KEYS CLIENTS

Filename: CLIENTS

Pathname: /usr/sales/CLIENTS

 

Field 7, CARDNO

Field 22, RHKEY

 

The above example shows the report from the second format of the LIST.KEYS command. The CLIENTS file uses field level encryption with a different key for each encrypted field.

 

 

See also:

Data encryption, CHANGE.KEY.PASSWORD, CREATE.FILE, CREATE.KEY, CREATE.SECURE.KEY, DELETE.KEY, DISABLE.KEY, DISABLE.KEY (QMBasic), ENABLE.KEY, ENABLE.KEY (QMBasic), ENCRYPT.FILE, GRANT.KEY, RESET.MASTER.KEY, REVOKE.KEY, SET.ENCRYPTION.KEY.NAME, UNLOCK.KEY.VAULT