Viewing all key management services

Procedure

Run the following command on any node in the cluster to view information about all key management services:

zbs-meta kms list

Output example

• For external key management services:

  Type: kmip
  Provider Id:  1b8872b5-ffc4-4811-8671-b814efdf9c54
  Provider Name:  kmip-kms
  Vendor:  test-vendor
  Auth Id:  ka-1b8872-01
  Username:  test-username
  Is Rotating Key:  False
  Key Rotation Seconds:  31536000
  Last Key Rotation Time:  2026-01-06 13:46:04
  Last Key Backup Time:  2025-12-24 16:31:20.0
  Crypt Stats:
    CipherFamily: AES256_CTR, Encrypt Res Num:  60
  Status:  KMS_STATUS_RUNNING
  
  ID            Host              Port  Status
  ------------  --------------  ------  ------------------------
  ks-1b8872-01  192.168.2.2    5696  KMIP_SERVER_CONNECTED
  ks-1b8872-02  172.20.1.1     5696  KMIP_SERVER_DISCONNECTED

  Parameter	Description
  Type	The key management service type. kmip indicates the external key management service communicates via the KMIP protocol.
  Provider Id	The ID of the key management service.
  Provider Name	The name of the key management service.
  Vendor	The vendor of the key management service.
  Auth Id	The authentication information ID of the key management service.
  Username	The username field in the authentication information about the key management service.
  Is Rotating Key	Whether the cluster is rotating keys.
  Key Rotation Seconds	The interval for automatic key rotation in the cluster.
  Last Key Rotation Time	The last key rotation time.
  Last Key Backup Time	The last key backup time.
  CipherFamily	The encryption algorithm enabled by the key management service.
  Encrypt Res Num	The number of encryption resources associated with this encryption algorithm in the cluster.
  Status	The status of the key management service.
  ID	The ID of the key management server.
  Host	The IP address or domain name of the key management server.
  Port	The port of the key management service.
  Status	The status of the key management server.

• For native key management services:

  Type: native
  Provider Id:  1a1e76cf-ffa5-44da-a98b-3a13a2633702
  Provider Name:  NativeKMS
  Is Rotating Key:  False
  Key Rotation Seconds:  31536000
  Last Key Rotation Time:  2026-01-06 11:56:37.0
  Last Key Backup Time:  2025-12-24 16:31:20.0
  Crypt Stats:
     CipherFamily: AES256_CTR, Encrypt Res Num:  60
  Status:  KMS_STATUS_RUNNING

  Parameter	Description
  Type	The key management service type. native represents the native key management service.
  Provider Id	The ID of the key management service.
  Provider Name	The name of the key management service.
  Is Rotating Key	Whether the cluster is rotating keys.
  Key Rotation Seconds	The interval for automatic key rotation in the cluster.
  Last Key Rotation Time	The last key rotation time.
  Last Key Backup Time	The last key backup time.
  CipherFamily	The encryption algorithm enabled by the key management service.
  Encrypt Res Num	The number of encryption resources associated with this encryption algorithm in the cluster.
  Status	The status of the key management service.