Method: cryptoKeys.create

Full name: projects.locations.keyRings.cryptoKeys.create

Create a newCryptoKey within aKeyRing.

Choose a location:

POST https://cloudkms.googleapis.com/v1/{parent=projects/*/locations/*/keyRings/*}/cryptoKeys

The URLs usegRPC Transcoding syntax.

Parameters

Parameters
`parent`	`string` Required. The`name` of the KeyRing associated with the`CryptoKeys`. Authorization requires the followingIAM permission on the specified resource`parent`: `cloudkms.cryptoKeys.create`

parent

string

Required. Thename of the KeyRing associated with theCryptoKeys.

Authorization requires the followingIAM permission on the specified resourceparent:

Parameters

Parameters
`cryptoKeyId`	`string` Required. It must be unique within a KeyRing and match the regular expression`[a-zA-Z0-9_-]{1,63}`
`skipInitialVersionCreation`	`boolean` If set to true, the request will create a`CryptoKey` without any`CryptoKeyVersions`. You must manually call`cryptoKeyVersions.create` or`cryptoKeyVersions.import` before you can use this`CryptoKey`.

cryptoKeyId

string

Required. It must be unique within a KeyRing and match the regular expression[a-zA-Z0-9_-]{1,63}

skipInitialVersionCreation

boolean

If set to true, the request will create aCryptoKey without anyCryptoKeyVersions. You must manually callcryptoKeyVersions.create orcryptoKeyVersions.import before you can use thisCryptoKey.

The request body contains an instance ofCryptoKey.

If successful, the response body contains a newly created instance ofCryptoKey.

Requires one of the following OAuth scopes:

For more information, see theAuthentication Overview.

Except as otherwise noted, the content of this page is licensed under theCreative Commons Attribution 4.0 License, and code samples are licensed under theApache 2.0 License. For details, see theGoogle Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2026-02-11 UTC.

Movatterモバイル変換