-
Notifications
You must be signed in to change notification settings - Fork 25
2.1
Paul Duvall edited this page Nov 13, 2019
·
30 revisions
Review and ensure that you have setup your development environment before going through the steps below.
- Go to the KMS Console.
- Click Customer managed keys and click the Create key button.
- Enter
ceoa-2-keyAlias and a Description and click Next. - Click Next on the Add tags page.
- On the Define key administrative permissions page, select a checkbox next to a user or users who can adminster this key and click Next.
- On the Define key usage permissions page, select a checkbox next to a user or users who can use this key and click Next.
- On the Review and edit key policy page, review the JSON policy and click Finish.
- Make note of the ARN for the KMS key you created.
- Click on the KMS key you just created (
ceoa-2-key). - Click the Key rotation tab.
- Select the Automatically rotate this CMK every year checkbox and click the Save button.
- Click on the
ceoa-2-keyKMS key. - Click on the Key actions button.
- Select Disable from the menu selection.
- When the window pops up, select the Confirm that you want to disable this key checkbox and then click on the Disable key button.
- Click on the
ceoa-2-keyKMS key. - Click on the Key actions button.
- Select Schedule key deletion from the menu selection.
- When the window pops up, enter
7in the Waiting period (in days) text field. - Select the Confirm that you want to delete this key in 7 days checkbox and then click on the Schedule deletion button.
- Introduction
- Labs
- The Current State of Encryption
- Setup Development Environment
- Lesson 1: Automating AWS Resources
- Lesson 2: Key Management
- Lesson 3: Developing with Encryption
- Lesson 4: Encryption in Transit
- Lesson 5: Encryption at Rest
- Lesson 6: Detecting Encrypted Resources
- Lesson 7: Logging and Searching KMS Keys
- Lesson 8: Continuous Encryption
- Summary