- Le plus récent
- Le plus de votes
- La plupart des commentaires
Hello.
Route 53 is a global resource, so it can probably be used even if there is a region-level failure.
https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/disaster-recovery-resiliency.html
KMS and ACM are region-level resources, so if a region failure occurs, they will no longer be available in the region where the failure occurs.
https://docs.aws.amazon.com/kms/latest/developerguide/disaster-recovery-resiliency.html
https://docs.aws.amazon.com/acm/latest/userguide/disaster-recovery-resiliency.html
In the case of KMS, I think multi-region keys are a good measure against region failures.
https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html
Hi,
In addition to multi-region keys suggested by Riku, you can also create keys based on imported material under your control. See https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html
So, you can re-use same material in a different region after failure to recreate KMS keys.
Best,
Didier
Contenus pertinents
- demandé il y a un an
- Réponse acceptéedemandé il y a un an
- demandé il y a un an
- demandé il y a 7 mois
- AWS OFFICIELA mis à jour il y a 4 ans
- Comment puis-je répertorier les autorisations et les principaux de clé KMS par région dans AWS KMS ?AWS OFFICIELA mis à jour il y a 3 ans