stackoom
  简体   繁体   中英

KMS Encryption - Local Development

 原文  2019-01-15 21:59:55       java/ python/ amazon-web-services/ aws-kms

Question

I have created AWS KMS Keys for encryption / decryption. The access has been provided to a specific which can encrypt / decrypt. I usually attach this role to my lambda in order to perform encryption / decryption. However I run the code locally , it fails as KMS key doesn't seem the associated role to authorize the operation. Is there a way I could use the KMS keys generated for local development?

1 answers

solution1
 0  2019-01-16 19:47:26

We recommend using different KMS CMKs for your development stack than your production stack.

As for why you are getting access denied, John is correct; that will be because the user/role you are using locally does not have permissions to use the key.

https://docs.aws.amazon.com/kms/latest/developerguide/control-access-overview.html

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Create an S3 bucket with KMS encryption? How to decrypt AWS KMS cipher with AWS Encryption SDK with Java or AWSKmsClient Local encryption and decryption of data Local development setup Why does decryption function of Java SDK of AWS KMS does not require an encryption context? How to make sure your files are encrypted when using AWS S3 KMS encryption? Error uploading S3 Object with Server Side Encryption using Amazon KMS Local Development Best Practices: Java, Docker, Kubernetes JAX-RS “Faked” headers in local development Eclipse FileInputStream with local development and remote file
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM