Questions tagged with AWS Key Management Service

AWS Key Management Service (KMS) makes it easy for you to create and manage cryptographic keys and control their use across a wide range of AWS services and in your applications.

Content language: English

Select up to 5 tags to filter
Sort by most recent

Browse through the questions and answers listed below or filter and sort to narrow down your results.

Hello there, I have been reading up on the differences between encrypting an S3 bucket with a bucket-level key versus the usual (for me) way of using a key based in KMS. I understand the cost-saving...
1
answers
0
votes
503
views
asked 6 months ago
Quick question: why is my EC2 Instance Connect asking me to authenticate my my Github repo clone despite the fact that I have: 1. Created a Public and a Private key on my local machine, 2. Uploaded...
2
answers
0
votes
548
views
asked 6 months ago
I am trying to create CloudTrail for a S3 bucket which has KMS enabled with type as Customer Managed Key. But I am getting insufficientS3BucketPolicyException Incorrect S3 bucket policy is detected...
1
answers
0
votes
849
views
Sahoo
asked 6 months ago
Hello everybody! I'm using a KMS assymetric key (RSA 4096) with imported key material to encrypt some pieces of data. Docs says that [**Asymmetric keys and HMAC keys are portable and...
1
answers
0
votes
481
views
profile picture
Jean
asked 6 months ago
I have a Redshift UDF that invokes a Lambda which decrypts data via KMS. When I check my Lambda logs and invoke the Lambda manually from the console, it decrypts successfully but for some reason the...
2
answers
0
votes
665
views
sidath
asked 6 months ago
Hi everyone! Hopefully I can get an insight from anyone here. To provide a little of context and background, we are currently developing a SaaS product for prospective clients (even from different...
1
answers
0
votes
599
views
asked 6 months ago
Hey folks, I have a customer-managed KMS key that was created to encrypt a specific CloudWatch **log group**. In the key policy, I have something like: ``` { "Version": "2012-10-17", "Id":...
3
answers
1
votes
723
views
asked 7 months ago
Dear community, Requesting your support. **Situation: ** * We do have a multi-account setup with a centralized logging account * We need to write S3 Server Access Logs from a decentral Account D...
2
answers
0
votes
481
views
Andre
asked 7 months ago
Hi, Currently I would like to encrypt CloudTrail logs in my Root account via a KMS key managed by me. This trail exists in all my environments due to the use of Control Tower, through the Root...
1
answers
0
votes
1318
views
asked 7 months ago
1
answers
0
votes
392
views
asked 7 months ago
Hello, I'm trying to create a bucket policy to deny uploads that are not encrypted with KMS keys and use Macie to verify that the policy is correct. I applied the following policy to a bucket which I...
2
answers
0
votes
480
views
Steven
asked 7 months ago
Hello, I am charged every month for Key Management Service but I didn't have any created key when I go to the dashboard. Maybe I created it with aws cli but I don't remember. How can I do ?
1
answers
0
votes
204
views
Leo
asked 7 months ago