I am trying a scenario, where there are 2 separate instances of vault and I need to export transit key from 1st vault instance and import it into the 2nd vault instance. I am able to successfully perform the export and import of aes256-gcm96 based transit key to the vault instances. But when i try to decrypt the ciphertext in 2nd vault instance which was encrypted by 1st vault instance, I get below error. Same is the case when I try vice-versa. Can you please let me know, what could have gone wrong?
/ $ vault write transit/decrypt/my-key ciphertext=vault:v1:fuhpOM6LWdyS8VPl…
Error writing data to transit/decrypt/my-key: Error making API request.
URL: PUT https://127.0.0.1:8200/v1/transit/decrypt/my-key
Code: 400. Errors:
- cipher: message authentication failed
I am using Vault 13.7.