Questions tagged with AWS Key Management Service
AWS Key Management Service (KMS) makes it easy for you to create and manage cryptographic keys and control their use across a wide range of AWS services and in your applications.
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
332 results
when creating a new ElasticBeanstalk environment, I am getting error:
```
Creating Auto Scaling group named: XXXXXX failed. Reason: Resource handler returned message: "Group did not stabilize. Last...
Hi ! I saw in EC2 that ed25519 keys are supported ; I tried generating a keypair on my Yubikey (SSH FIDO key) and importing the public key as an EC2 key but it fails. According to the error message...
I have an ec2 AMI with an encrypted EBS snapshot. I have the below policy. If I use lambda boto3 to start instance then it can start instance. But If I use SSM automation runbook like updateLinuxAMI,...
There are two aws accounts 222222222222 , 777777777777 & are inside organization. I need to copy restore points from backup vault in 222222222222 to vault in 777777777777 using lambda function in...
I have an application deployed on on-prem server, is there a way to use only IAM role or policy to access AWS SDk. I dont want to provide or store the secret key and access key anywhere to access it....
AccessDeniedException - User: because no identity-based policy allows the kms:DescribeKey action
what key or policy should I allow to solve this error?
i am trying to solve the when i am trying to...
Hi there,
We lost administrative access to a KMS CMK. This is the result of a role being recreated I guess. The root user is not able to update the key policy either.
In this situation, I know the...
Hi,
IHAC that is looking for the encryption options for EBS volumes and wants to correlate with the options they used on other cloud platform as:
There are 3 options e when encrypting the disks of a...
I built S2N-TLS with AWS libcrypto with PQ support as provided below. When I connect to KMS endpoint I need to choose a weird policy to have PQ cipers negotiated. How to connect over TLS 1.3 and PQ...
IHAC who has an organizational requirement to rotate the KMS key every 6 months. Currently, they have auto-rotation enabled for a year. Additionally, in case of an incident they want to rotate the key...
The cloudtrail event details i am giving below
Event name - RetireGrant
Event time - August 01, 2024, 03:30:22 (UTC+05:30)
User name - -
Event source - kms.amazonaws.com
Resource type -...
Hello
I accidentally created a CMK in another region that I'm not using with Terraform. However, when I attempt to delete the CMK using terraform destroy, it cannot be deleted. I have tried deleting...