On this page
Warning:Cockroach Labs will stop providing Assistance Support for v22.1 on November 24, 2023. Prior to that date, upgrade to a more recent version to continue receiving support. For more details, see the Release Support Policy.
cockroach debug encryption-active-key command displays the encryption algorithm and store key for an encrypted store.
$ cockroach debug encryption-active-key [path specified by the store flag]
cockroach debug command has a few subcommands, users are expected to use only the
We recommend using the
job-trace subcommand only when directed by the Cockroach Labs support team.
debug subcommands are useful only to CockroachDB's developers and contributors.
Start a node with Enterprise Encryption At Rest enabled:
$ cockroach start --store=cockroach-data --enterprise-encryption=path=cockroach-data,key=aes-128.key,old-key=plain --insecure --certs-dir=certs
View the encryption algorithm and store key:
$ cockroach debug encryption-active-key cockroach-data