简体繁体中英

AWS KMS ARN a secret?

原文 2021-10-05 03:25:37 7 1 amazon-web-services/ amazon-s3/ encryption/ amazon-cloudformation/ amazon-kms

I am enabling the SSE KMS encryption on my S3 buckets. I am doing this by adding the BucketEncryption property of S3 bucket in my Cloudformation template.

What is the best practice?

This property asks KMS ARN as a value. I am using AWS manages KMS key. Is it safe to hardcode that ARN in the Cloudformation template?

1 answers

Generally its fine to hard-code the value if it is constant. But if you want to redeploy your template in different regions or accounts, it would be better to parametrize the ARN to make your template more portable.

How to retrieve an arn of secret with random suffix in AWS Cloudformation

Laravel S3 - arn and kms key

AWS KMS CLI Command

how to get arn of AWS::ApiGateway::Method

AWS ECS: Invalid service in ARN (Service: AmazonECS; ...)

How to retrieve ARN through AWS SDK for Go

AWS Multi Environment Secrets Manager arn keys

terraform S3 module, can't call the KMS key arn calling module

AWS CLI retrieve the ARN of the newly created policy

Get target group arn from aws cli

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to retrieve an arn of secret with random suffix in AWS Cloudformation Laravel S3 - arn and kms key AWS KMS CLI Command how to get arn of AWS::ApiGateway::Method AWS ECS: Invalid service in ARN (Service: AmazonECS; ...) How to retrieve ARN through AWS SDK for Go AWS Multi Environment Secrets Manager arn keys terraform S3 module, can't call the KMS key arn calling module AWS CLI retrieve the ARN of the newly created policy Get target group arn from aws cli

Related Tags

AWS KMS ARN a secret?

Question

1 answers

solution1 0 2021-10-05 03:50:38

solution1
0 2021-10-05 03:50:38