Questions tagged with AWS Key Management Service
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I read this page https://docs.aws.amazon.com/eks/latest/userguide/enable-kms.html, it says that
> If you enable secrets encryption for an existing cluster and the KMS key that you use is ever...
1
answers
0
votes
317
views
asked a year agolg...
We will enable Kubernetes secret encryption in Production environment. However, our dev environment already set Kubernetes encryption to enabled. So we cannot test if there's downtime when enabling...
1
answers
0
votes
347
views
asked a year agolg...
We have a encrypted dynamodb table and recently noticed latency on ddb calls, looking further it was actually kms calls that was taking time. So we looked into caching solutions and found that...
1
answers
0
votes
313
views
asked a year agolg...
Is it possible to save encrypted data from a Nitro Enclave? Here is my scenario:
After performing some computation, I want my service in the enclave to encrypt the data and store it somewhere...
3
answers
0
votes
697
views
asked a year agolg...
Hello, my question is just whether or not I could use the kms:ViaService condition key in a IAM policy with FIPS endpoints specified? I need to use FIPS endpoints for compliance reasons and I can't...
3
answers
0
votes
543
views
asked a year agolg...
I can't delete it in anyway in KMS C.P
the key is the following and it's an AWS Managed Key (not customer):
"Alias: aws/lightsail"
"Status: Enabled"
"Description: Default key that protects my...
1
answers
0
votes
299
views
asked a year agolg...
I am using an MDR service called Adlumin that consumes CloudWatch log streams created by my Org CloudTrail log.
Part of that requirement is that my Log files use SSE-KMS encryption, which is not the...
1
answers
0
votes
882
views
asked a year agolg...
I am trying to generate a data key for us to use outside of KMS. Looking at the documentation for this api -...
1
answers
0
votes
557
views
asked a year agolg...
I have an API which is working with S3. There is an access key which I can't find in the list of IAM users, that key created about 4 years ago. It means I can't delete/disable it. Where I can find all...
2
answers
0
votes
255
views
asked a year agolg...
I have no experience with AWS. I'm trying to figure out what is supposed to go in the place of "solution_key_name" here:
obj = s3.Object(solution_bucket_name, solution_key_name)
I just need to get...
1
answers
0
votes
257
views
asked a year agolg...
In most regions the following KMS key policy
```
{
"Sid": "Enable IAM policies",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::111122223333:root"
},
"Action": "kms:*",
...
1
answers
0
votes
272
views
asked a year agolg...
I am writing a python script which will iterate through the AWS accounts and fetch all Encryption key details.
In BOTO3 i can see only AWS_KMS key api.
My question is how can I fetch information of...
2
answers
0
votes
708
views
asked a year agolg...