Deleting a device association and the device

You can delete any associations that the device has with machines. You can also delete a device for which a business need no longer exists. Deleting the device removes the device serial number and its key data from the IBM Guardium Key Lifecycle Manager database.

About this task

If the device is in the DS5000 endpoint family and machine affinity is enabled, deleting the device also deletes any relationship between a device and a machine.

You can use the Delete device menu item or the Device Delete REST Service to delete a device. Your role must have permissions to the delete action and to the appropriate endpoint.

To delete any associations that the device has with machines, use the Delete association menu item or the Machine Device Delete REST Service. Your role must have permissions to the delete action and to the appropriate endpoint.

1. Using the graphical user interface
   1. Log in to the graphical user interface.
   2. On the home page, click the menu icon () at the upper left of the page.
   3. Click Endpoint management > Configured endpoints.
   4. On the Configured endpoints page, select your DS5000 endpoint and click the overflow menu icon ().
   5. From the overflow menu options, click View.
   6. Alternatively, on the home page, click your DS5000 endpoint link in the Configured endpoints section.
   7. On the DS5000 endpoint management page, select a device in the table and click the overflow menu icon.
   8. Based on your business needs, you can delete device association with the machine or a device.
      • To delete the device association with the machine, from the overflow menu options, click Delete association.
      • To delete a device, from the overflow menu options, click Delete device.
   9. On the Confirm delete dialog, read the confirmation message before you delete the device. Click OK.
2. Using a REST interface
   1. Open the Swagger UI. For more information, see Using Swagger UI.
   2. Authenticate and authorize to access the REST APIs. For more information, see Authentication process for REST services.
   3. Use the Machine Device List REST Service to obtain the uuid of the device that you intend to delete. Use the Machine Device Delete REST Service to delete any associations that the device has with machines. For example, you can send the following HTTP requests.

      GET https://localhost:port/GKLM/rest/v1/machines/device?machineID=
      3042383030303437000000000000
      Content-Type: application/json
      Accept : application/json
      Authorization: SKLMAuth authId=139aeh34567m

      DELETE https://localhost:port/GKLM/rest/v1/machines/device
      Content-Type: application/json
      Accept : application/json
      Authorization: SKLMAuth authId=139aeh34567m
      {"deviceUUID”:”DEVICE-663b6d37-e6d5-4c9f-af90-e40e48d27f3c","machineID":
      "3042383030303437000000000000”}

   4. Use the Device Delete REST Service to delete a device. For example, you can send the following HTTP request.

      DELETE https://localhost:port/GKLM/rest/v1/devices/DEVICE-74386920-148c-
      47b2-a1e2-d19194b315cf
      Content-Type: application/json
      Accept : application/json
      Authorization: SKLMAuth authId=139aeh34567m