I have a KMS policy statement like given below. { "Sid": "Allow use of the key by SNS", "Effect": "Allow", "Principal": { "Servic ...
I have a KMS policy statement like given below. { "Sid": "Allow use of the key by SNS", "Effect": "Allow", "Principal": { "Servic ...
I created KMS key by using KMS client (PHP). Now I want to share this key with some other users. I have their Account IDs, How can I do that, by u ...
I'm trying to encrypt data being saved into a dynamo table. This is production PII data that shouldn't be visible even to someone with permissions to ...
I'm provisioning Kinesis Data Stream with AWS managed KMS key as well as Delivery Stream reading from stream. There's a problem on how to add decrypt ...
I am trying to construct a command, which will list kms keys from my aws account, but there is a problem every kms keys is having tags, like "env pro ...
I have multiple IAM role (up to 100) required to use this KMS key. Instead of listing all the IAM role in the KMS key policy. Is there any way I can w ...
When I run the following command, this is what I get. But what I really want is the key id under "(default) aws/ebs" (shown below). ...
I am trying to figure out how to set up a CloudTrail trail encryption. For my CloudTrail trail I have a bucket as target for the logs that I have enab ...
Are all 3 versions of AWS Server Side Encryption (SSE-S3, SSE-KMS, SSE-C) considered envelope encryption? In other words all 3 use 2 keys (one key to ...
I am following this instruction to implement custom message sender in Cognito https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lamb ...
I am trying to generate a private key and public key using Aws kms GenerateDataKeyPair method which returns me a private key and public key in ByteBuf ...
I use the Terraform EKS module, terraform-aws-modules/eks/aws (version: 18.30.1). I would like to enable Secrets encryption for EKS cluster. I added l ...
The problem is when I feed Dynamodb config endpoint some value the AWS Key Management Service stops working altogether. 1. DynamoDB 2. AWS KMS ...
I am trying to decrypt a parameter stored on SSM that is encrypted with a user managed KMS key, which I just created. This post uses outdated meth ...
I'm trying to create a KMS key using the AWS SDK v2 function call: The problem I'm having is that I'm not sure how to generate the policy for the k ...
I generated an ECC_NIST_P521 spec key, which uses the ECDSA_SHA_512 signing algorithm. I'm trying to create a jwt.SigningMethod with this in mind, but ...
Hi I have a file that upload on AWS S3 bucket where we enable KMS encryption . With AWS Datasync we will be transfering my file from s3 to EFS. How we ...
I have a resource policy on my KMS key that allows access from the root account and some additional IAM roles used with Jenkins (Role A). I was able ...
I can successfully encrypt the value using the following code: In the result I can see encrypted value. BUT The problem is that I need this value ...
Background I am trying to setup a webapp using EKS, and am trying to setup DNS configuration options via Terraform (KMS stuff & records/rules tha ...