![]() ![]() ![]() Once the key is created, the KMS dashboard will display a confirmation message: “Your master key was created successfully. ![]() The owners of the external AWS accounts must also provide access to this CMK by creating appropriate policies for their IAM users.ġ1 Under Preview Key Policy section, review the key policy generated by AWS then click Finish to create your new CMK. 4 and 5 to verify the encryption status and configuration for other file systems provisioned in the current region.Ġ7 Change the AWS region from the navigation bar and repeat the audit process for other regions.Ġ1 Sign in to the AWS Management Console.Ġ3 In the left navigation panel click Encryption Keys.Ĥ Select the appropriate AWS region from the Filter menu (must match the region where your file system is provisioned).Ġ5 Click Create Key button from the dashboard top menu.Ġ6 In the Alias (required) and Description fields, enter a unique name (alias) and a description for the new CMK, then click the Next Step button.Ġ7 Under Key Administrators section, select which IAM users and/or roles can administer the new CMK, then click Next Step.Ġ8 Under This Account section, select which IAM users and/or roles can use the new CMK to encrypt/decrypt the file system data with the AWS KMS API.Ġ9 (Optional) Under External Accounts section, click Add an External Account and enter an external account ID in order to add another AWS account that can use this CMK to encrypt/decrypt the EFS file system data and metadata. If the key alias (name) is " aws/elasticfilesystem", the selected EFS file system is encrypted using the default master key (AWS-managed key) instead of the KMS CMK customer-managed key.Ġ6 Repeat step no. To expand the panel with the file system configuration details.Ġ5 On the selected file system panel, within Other details section, make sure that the Encrypted attribute value is set to Yes (otherwise see this rule to enable file system encryption), then check the encryption key name set for the KMS key alias attribute. Ġ3 In the left navigation panel, select File Systems.Ġ4 Choose the EFS file system that you want to examine then click on the Show/Hide Details button: 02 Navigate to Elastic File System (EFS) dashboard at. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |