1 réponse
- Le plus récent
- Le plus de votes
- La plupart des commentaires
0
I haven't used DNSSEC myself yet but I'm assuming the usual restrictions on KMS key deletion apply. You can't delete KMS keys immediately, only schedule them for deletion with a min 7 days, default 30 days waiting period.
This is to protect you - deleting a customer master key is destructive and potentially dangerous. It deletes the key material and all metadata associated with the CMK, and is irreversible. After a CMK is deleted you can no longer decrypt the data that was encrypted under that CMK, which means that data becomes unrecoverable.
Contenus pertinents
- demandé il y a un an
- demandé il y a 23 jours
- demandé il y a 7 mois
- demandé il y a 9 mois
- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a 5 ans