Questions tagged with AWS Key Management Service
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
We will enable Kubernetes secret encryption in Production environment. However, our dev environment already set Kubernetes encryption to enabled. So we cannot test if there's downtime when enabling...
1
answers
0
votes
344
views
asked a year agolg...
We have a encrypted dynamodb table and recently noticed latency on ddb calls, looking further it was actually kms calls that was taking time. So we looked into caching solutions and found that...
1
answers
0
votes
307
views
asked a year agolg...
Is it possible to save encrypted data from a Nitro Enclave? Here is my scenario:
After performing some computation, I want my service in the enclave to encrypt the data and store it somewhere...
3
answers
0
votes
690
views
asked a year agolg...
Hello, my question is just whether or not I could use the kms:ViaService condition key in a IAM policy with FIPS endpoints specified? I need to use FIPS endpoints for compliance reasons and I can't...
3
answers
0
votes
538
views
asked a year agolg...
I can't delete it in anyway in KMS C.P
the key is the following and it's an AWS Managed Key (not customer):
"Alias: aws/lightsail"
"Status: Enabled"
"Description: Default key that protects my...
1
answers
0
votes
297
views
asked a year agolg...
I am using an MDR service called Adlumin that consumes CloudWatch log streams created by my Org CloudTrail log.
Part of that requirement is that my Log files use SSE-KMS encryption, which is not the...
1
answers
0
votes
881
views
asked a year agolg...
I am trying to generate a data key for us to use outside of KMS. Looking at the documentation for this api -...
1
answers
0
votes
551
views
asked a year agolg...
I have an API which is working with S3. There is an access key which I can't find in the list of IAM users, that key created about 4 years ago. It means I can't delete/disable it. Where I can find all...
2
answers
0
votes
253
views
asked a year agolg...
I have no experience with AWS. I'm trying to figure out what is supposed to go in the place of "solution_key_name" here:
obj = s3.Object(solution_bucket_name, solution_key_name)
I just need to get...
1
answers
0
votes
255
views
asked a year agolg...
In most regions the following KMS key policy
```
{
"Sid": "Enable IAM policies",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::111122223333:root"
},
"Action": "kms:*",
...
1
answers
0
votes
270
views
asked a year agolg...
I am writing a python script which will iterate through the AWS accounts and fetch all Encryption key details.
In BOTO3 i can see only AWS_KMS key api.
My question is how can I fetch information of...
2
answers
0
votes
704
views
asked a year agolg...
I know that an access key gives programmatic access to your AWS account and that an access key of a root account gives full access, but is the access key for a created user limited by the permissions...
1
answers
0
votes
266
views
asked a year agolg...