I have seen that there are many AWS services that do not support the use of the Alias on a KMS key and you have to use the uuid.
Also be aware and I can’t remember off the top of my head that there is a limit/rate limit of the number of Kms decrypt/encrypt cross account as apposed to local account transactions. I think it was so many per second/minute but can’t remember.
- AWS 官方已更新 3 年前
- AWS 官方已更新 1 年前