Forcing data key rotation in the platform cipher

If the Customer Data Key (CDK) that you are using in the platform cipher has been compromised, you can immediately rotate the internal encryption key. The key can be rotated regardless of the key rotation period that is configured in the keystore data instance.

Before you begin: To force data key rotation, you must have the pxCanManageDataEncryption privilege, which is included in the PegaRULES:SecurityAdministrator role.
  1. In the header of Dev Studio, click Configure > System > Settings > Data Encryption.
  2. In the Application data encryption section, do the following steps:
    1. Click Platform cipher.
    2. Click Force data key rotation to immediately rotate the internal encryption key.