Help us improve the AWS re:Post Knowledge Center by sharing your feedback in a brief survey. Your input can influence how we create and update our content to better support your AWS journey.
setting waiting time of deleting KMS keys
Hi everyone. we know that AWS KMS enforces a minimal wait time of seven days when deleting KMS keys. we can specify a waiting period of 7-30 days when scheduling key deletion. except during scheduling key deletion. Can we set it longer than 30 days?
- Language
- English
- Newest
- Most votes
- Most comments
Hello.
No, the KMS deletion waiting period cannot be longer than 30 days.
https://docs.aws.amazon.com/kms/latest/developerguide/deleting-keys.html#deleting-keys-how-it-works
Because it is destructive and potentially dangerous to delete a KMS key, AWS KMS requires you to set a waiting period of 7 – 30 days. The default waiting period is 30 days.
If you enter a number greater than 30 days, a message similar to the image below will be output and you will not be able to schedule deletion.
Relevant content
- asked 4 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 3 years ago
