1 réponse
- Le plus récent
- Le plus de votes
- La plupart des commentaires
0
If your replication role policy previously match by this field "kms:EncryptionContext:aws:s3:arn", you will need to update it so it's just the bucket ARN. See "Changes to note before enabling an S3 Bucket Key" on https://docs.aws.amazon.com/AmazonS3/latest/dev/bucket-key.html#bucket-key-changes - S3 Bucket Keys uses bucket ARN as encryption context, while previously KMS encryption uses object ARN. Also, you do not have to enable S3 Bucket Keys on both source and destination buckets for replication to work.
répondu il y a 3 ans
Contenus pertinents
- demandé il y a un an
- demandé il y a 4 mois
- demandé il y a 7 mois
- AWS OFFICIELA mis à jour il y a 2 ans
- AWS OFFICIELA mis à jour il y a 9 mois
- AWS OFFICIELA mis à jour il y a 3 ans