Generate New Random Transport Key

  1. Type G or g (from the previous command prompt) in step 6 in Add or Import a Transport Key.

    KMS Generate Transport Key screen where you can choose the key type and key length

  2. Select the key type (AES or 3DES).

  3. Select the key length, between AES-128 and AES-256 (for AES keys), or between 2TDEA and 3TDEA keys (for 3DES keys).

  4. Ask the first pair of transport key officers to enter the room.

  5. To continue, press ENTER.

    KMS Generate Transport Key screen where you can choose the key type and key length

  6. Ask the transport key officers to write down the component value and the key check value.

  7. To continue, press ENTER.

  8. Ask the first pair of transport key officers to leave the room.

  9. Repeat the previous three steps for the second and third pairs of transport key officers.

  10. When the three pairs of officers have finished their sessions, press ENTER. A success message is displayed.

    KMS Generate Transport Key screen with success message indicating that key ceremony is complete

  11. Press the Enter key.

    KMS Generate Transport Key screen displaying list of imported encrypted keys

  12. Press the Enter key to return to the main menu.