Questions tagged with AWS Key Management Service

AWS Key Management Service (KMS) makes it easy for you to create and manage cryptographic keys and control their use across a wide range of AWS services and in your applications.

Content language: English

Select up to 5 tags to filter
Sort by most recent

Browse through the questions and answers listed below or filter and sort to narrow down your results.

332 results
when creating a new ElasticBeanstalk environment, I am getting error: ``` Creating Auto Scaling group named: XXXXXX failed. Reason: Resource handler returned message: "Group did not stabilize. Last...
1
answers
0
votes
14
views
AWS
SUPPORT ENGINEER
Wiem
asked 4 days ago
Hi ! I saw in EC2 that ed25519 keys are supported ; I tried generating a keypair on my Yubikey (SSH FIDO key) and importing the public key as an EC2 key but it fails. According to the error message...
3
answers
0
votes
29
views
asked 7 days ago
I have an ec2 AMI with an encrypted EBS snapshot. I have the below policy. If I use lambda boto3 to start instance then it can start instance. But If I use SSM automation runbook like updateLinuxAMI,...
2
answers
0
votes
28
views
asked 10 days ago
There are two aws accounts 222222222222 , 777777777777 & are inside organization. I need to copy restore points from backup vault in 222222222222 to vault in 777777777777 using lambda function in...
0
answers
0
votes
23
views
profile picture
asked 24 days ago
I have an application deployed on on-prem server, is there a way to use only IAM role or policy to access AWS SDk. I dont want to provide or store the secret key and access key anywhere to access it....
2
answers
0
votes
63
views
Braj
asked a month ago
AccessDeniedException - User: because no identity-based policy allows the kms:DescribeKey action what key or policy should I allow to solve this error? i am trying to solve the when i am trying to...
1
answers
0
votes
39
views
philip
asked a month ago
Hi there, We lost administrative access to a KMS CMK. This is the result of a role being recreated I guess. The root user is not able to update the key policy either. In this situation, I know the...
4
answers
0
votes
73
views
asked a month ago
Hi, IHAC that is looking for the encryption options for EBS volumes and wants to correlate with the options they used on other cloud platform as: There are 3 options e when encrypting the disks of a...
1
answers
0
votes
309
views
AWS
asked 2 months ago
I built S2N-TLS with AWS libcrypto with PQ support as provided below. When I connect to KMS endpoint I need to choose a weird policy to have PQ cipers negotiated. How to connect over TLS 1.3 and PQ...
2
answers
0
votes
145
views
AWS
asked 2 months ago
IHAC who has an organizational requirement to rotate the KMS key every 6 months. Currently, they have auto-rotation enabled for a year. Additionally, in case of an incident they want to rotate the key...
2
answers
0
votes
170
views
AWS
asked 2 months ago
The cloudtrail event details i am giving below Event name - RetireGrant Event time - August 01, 2024, 03:30:22 (UTC+05:30) User name - - Event source - kms.amazonaws.com Resource type -...
1
answers
0
votes
389
views
asked 2 months ago
Hello I accidentally created a CMK in another region that I'm not using with Terraform. However, when I attempt to delete the CMK using terraform destroy, it cannot be deleted. I have tried deleting...
3
answers
0
votes
219
views
profile picture
asked 2 months ago