Questions tagged with AWS Key Management Service
AWS Key Management Service (KMS) makes it easy for you to create and manage cryptographic keys and control their use across a wide range of AWS services and in your applications.
Content language: English
Filter questions
Select tags to filter
Sort by
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
402 results
I know i can copy the snapshot to second aws account,
but is there actual way to backup the Default EBS KMS master key ? in case of account take over? key deletion ,etc..
Hi everyone. we know that AWS KMS enforces a minimal wait time of seven days when deleting KMS keys. we can specify a waiting period of 7-30 days when scheduling key deletion.
except during schedulin...
asked 2 years ago
How can I ensure that my IAM role can access the Secrets value stored in Secrets Manager?
I am using this IAM role as an ECS Container role. My secret name is acme/prod/secret, which is encrypted wit...
When using 3rd party CA and would like to reimport certs to Certificate Manager with a higher RSA Key Size without changing the Cert ANR's so ELB's etc are not impacted.
Today, AWS restricts users fr...
So , i will make this short. I stored my JWT secret key in AWS Secrets Manager. After that , when running my WEB Api project , i got an error telling me that my key is not encrypted. I said ok , let m...
Hi AWS, the IAM users in our AWS accounts are mostly having AWS managed policy `AWSAdministratorAccess` attached to it which allows it to access all the AWS services and performs most of the read/writ...
asked 2 years ago
I got one finding in AWS -
Finding : ecs-fargate-storage-encrypted-with-aws-managed-kms-key
Description : Please use AWS KMS Encryption with an AWS KMS Customer Managed Key.
So for this I have crea...
Hello! I've been working steadily on attempting to apply security features that further enhance the security of my infrastructure created using Terraform and AWS CloudFormation! In spite of my progres...
I would like to create a kms key from the root account via console with following very restrictive conditions:
The root account can only enable/disable/delete and view policy. The initial policy would...
Hi, I am trying to test something. Consider that the key that was defined in aws glue catalog is deleted (CMK). so I don't have access the tables and DBs. I want to delete tables and DBs and re-create...
asked 2 years ago
I have been using ssh to access to my EC2 instance. I am setting up the same ssh on my laptop while I am overseas. But I need the private key pc_key.pem file which is assigned to the instance. It does...
Hi everyone, for Glue catalog cross account I changed the key in catalog settings to a customer-managed kms key. I kept s3 bucket(where data stores) encryption type as it was( SSE-s3). I also did all ...
asked 2 years ago