Questions tagged with AWS Key Management Service
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I built S2N-TLS with AWS libcrypto with PQ support as provided below. When I connect to KMS endpoint I need to choose a weird policy to have PQ cipers negotiated. How to connect over TLS 1.3 and PQ...
IHAC who has an organizational requirement to rotate the KMS key every 6 months. Currently, they have auto-rotation enabled for a year. Additionally, in case of an incident they want to rotate the key...
The cloudtrail event details i am giving below
Event name - RetireGrant
Event time - August 01, 2024, 03:30:22 (UTC+05:30)
User name - -
Event source - kms.amazonaws.com
Resource type -...
Hello
I accidentally created a CMK in another region that I'm not using with Terraform. However, when I attempt to delete the CMK using terraform destroy, it cannot be deleted. I have tried deleting...
we need to exchange with an external organisation certificate and secrets to configure two different applications (hosted on different hyper scalers , one being AWS and other one Azure) with TLS...
I want to use AWS Payment Cryptography but i can figure out regarding the rotation are the keys rotated? if yes where it is being configured ?can i rotate it from net sdk? can i configure rotation in...
TL;DR: A new devops want to use the current EKS which encrypted using KMS, the IAM have administrator access which copied from the old devops guy.
I've joined a new company which have eks cluster, to...
Hi!
I'm wondering why i got charged for KMS while i don't have any API requests?
I don't event have any active services.
Could you please help check and clarify?
Thank you!
I know i can copy the snapshot to second aws account,
but is there actual way to backup the Default EBS KMS master key ? in case of account take over? key deletion ,etc..
Hi everyone. we know that AWS KMS enforces a minimal wait time of seven days when deleting KMS keys. we can specify a waiting period of 7-30 days when scheduling key deletion.
except during...
How can I ensure that my IAM role can access the Secrets value stored in Secrets Manager?
I am using this IAM role as an ECS Container role. My secret name is acme/prod/secret, which is encrypted...
When using 3rd party CA and would like to reimport certs to Certificate Manager with a higher RSA Key Size without changing the Cert ANR's so ELB's etc are not impacted.
Today, AWS restricts users...