How to get AWS-managed key for encrpyting RDS database instance

How is CDK supposed to grab an AWS-managed key for an RDS database instance's StorageEncryptionKey property? I tried

var encryptionKey = Key.FromLookup(this, "aws/rds", new KeyLookupOptions { AliasName = "aws/rds" });
var encryptionKey = Key.FromKeyArn(this, "aws/rds", _wellKnownKmsKeyArn);

but both return null.

主題

管理與治理

標籤

AWS CloudFormation

語言

English

icelava

已提問 2 年前檢視次數 844 次

1 個回答

最新
最多得票
最多評論

這些答案是否有幫助？支持正確答案，以幫助社區從您的知識中受益。

已接受的答案

Ok my mistake; the _wellKnownKmsKeyArn variable is actually accessed via a multi-layered JSON object and the class definition wasn't setup properly.

Using Key.FromKeyArn() is the method to use after properly getting the aws/rds key ARN.

icelava

已回答 2 年前

How to get AWS-managed key for encrpyting RDS database instance

相關內容