Skip to main content

Site-key Scenarios

There are various escrow scenarios that may occur that involve the Site-key admin and a super admin.

Create escrow groups

In order to create an escrow group, the Site-key admin must log in, and select the group icon located at the top right side of the screen. A modal appears that prompts the user to give the new group a name. Once the user accepts, the request will appear in the dashboard. If the user would like to edit the request, they can do so by selecting the blue "EDIT" located at the bottom left of the request. If they would like to completely delete the request, they can do so by selecting the red "DELETE." To continue with the request, the user must sign it by selecting "Sign" on the bottom right, and then entering their password. Next, the user must export the certificate by selecting the button to the right of the "Signed Certificates" heading. A modal appears that prompts the user to name the exported version of the request.

Next, the user must email the downloaded request file to a super admin in the system. From there, a super admin must log in to the tiCrypt interface. go to the Management tab, and navigate to the "Signed Escrow Actions." From there, the user must select the plus icon located at the top right side of the screen and drag in the requested file that was emailed to them by the site-key admin. Once dropped, the super admin must sign by clicking the check box, and applying selected.

Delete escrow user

In order to delete an escrow user from the system, a super admin must navigate to the "Escrow Users" in the management tab. Once they select the red button located to the right of each escrow user's name, a request file will immediately begin to download. The super admin must email this file to the site-key admin.

The site-key admin must log in to the site-key interface and drag the file that was sent to then by the super admin into the dashboard. Next, the site-key admin must select it, sign it by putting it their password, and exporting the signed certificate.

The site-key admin must send this signed certificate back to the super admin so that the super admin can upload the certificate into "Signed Escrow Actions" located in the management tab. From there, the user must select the plus icon located at the top right side of the screen and drag in the request file that was emailed to them by the site-key admin. Once dropped, the super admin must sign by clicking the check box, and applying selected.

Reassign the site-key

note

It is not common nor encouraged to change the site-key admin unless the site-key password is lost. In the case that it is a necessity, a user must go through the same steps that they take to register as a site-key admin. They must send the public key to Tera Insights so we can sign off on it.