2 Answers
- Newest
- Most votes
- Most comments
0
I bought AWS Developer Support and asked them this question. They asked me to go to EC2 and then look at Data protection and security. Sure enough, the default encryption key was the one that showed up in the error message. Once I changed the default encryption key to a valid encryption key, create-restore-image-task began working well. If anyone comes across this same issue, hope this will post will help them.
answered 5 months ago
0
Hello. Ensure that the KMS key is accessible and its policy allows usage by the necessary IAM entities.
Regards, Andrii
Relevant content
- Accepted Answerasked a year ago
- asked 10 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 4 months ago
- AWS OFFICIALUpdated 2 years ago
Hi Andrii, I cannot find the KMS key referenced in the error message in any region. I am looking for the key from the web management console. Is there a spot where keys are stored but not visible through the web management console?
Also, the aws cli creds are that of an administrator (policy AdministratorAccess). Shouldn't administrator already have the right access? Additionally, I have also set inline policy specifically for the ARN in the error message: