Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE] Enhancement - Automated KMS CMK rotation capabilities #499

Closed
Brian969 opened this issue Nov 21, 2020 · 1 comment · Fixed by #619
Closed

[FEATURE] Enhancement - Automated KMS CMK rotation capabilities #499

Brian969 opened this issue Nov 21, 2020 · 1 comment · Fixed by #619
Labels
1-Codebase Related to the SEA Solution/automation tooling 2-Enhancement New minor feature or request 3-Shipped In a GA release v1.2.6 In release v1.2.6
Projects
AWS SEA Roadmap (Backlog)

Comments

@Brian969
Copy link
Contributor

Brian969 commented Nov 21, 2020
edited

Automated KMS CMK rotation capabilities

  • the ASEA only uses Customer Managed Keys (CMK) within KMS
  • Different CMK's are created for each distinct purpose within each account
    • SSM, Secrets, ConfigBucket, EBS, S3Buckets
  • Currently these keys are being created without automatic key rotation enabled

TASK:

  • all new installations and all new KMS CMK creations moving forward shall have automatic rotation enabled when the key is created
  • all existing installations shall shall have all ASEA created keys updated to enable key rotation

Details:
@Brian969 Brian969 added 2-Enhancement New minor feature or request 3-Proposed New Item, not assessed 1-Codebase Related to the SEA Solution/automation tooling labels Nov 21, 2020
@Brian969 Brian969 self-assigned this Nov 21, 2020
@Brian969 Brian969 added this to Needs Triage in AWS SEA Roadmap (Backlog) via automation Nov 21, 2020
@Brian969 Brian969 moved this from Needs Triage to Researching in AWS SEA Roadmap (Backlog) Nov 21, 2020
@Brian969 Brian969 moved this from Researching to Up Next in AWS SEA Roadmap (Backlog) Feb 12, 2021
@Brian969 Brian969 added Priority High 3-Planned Planned, in backlog and removed 3-Proposed New Item, not assessed labels Feb 12, 2021
@Brian969 Brian969 assigned naveenkoppula and unassigned Brian969 Feb 12, 2021
@naveenkoppula naveenkoppula moved this from Up Next to In Progress in AWS SEA Roadmap (Backlog) Feb 17, 2021
@naveenkoppula naveenkoppula linked a pull request Feb 17, 2021 that will close this issue
feat(core): Adding Automatic rotation to KMS Key #619
Merged
@naveenkoppula naveenkoppula moved this from In Progress to In Review/Test in AWS SEA Roadmap (Backlog) Feb 17, 2021
@Brian969 Brian969 moved this from In Review/Test to Coming Soon in AWS SEA Roadmap (Backlog) Feb 17, 2021
@Brian969 Brian969 added 3-Coming Soon Development complete, planned for next release and removed 3-Planned Planned, in backlog Priority Medium-High labels Feb 17, 2021
@Brian969
Copy link
Contributor Author

  • This will ship in v1.2.6

@Brian969 Brian969 added v1.2.6 In release v1.2.6 3-Shipped In a GA release and removed 3-Coming Soon Development complete, planned for next release labels Feb 23, 2021
@Brian969 Brian969 moved this from Coming Soon to Recently Shipped in AWS SEA Roadmap (Backlog) Feb 24, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
1-Codebase Related to the SEA Solution/automation tooling 2-Enhancement New minor feature or request 3-Shipped In a GA release v1.2.6 In release v1.2.6
Projects
AWS SEA Roadmap (Backlog)
Recently Shipped
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(core): Adding Automatic rotation to KMS Key aws-samples/aws-secure-environment-accelerator
2 participants
@naveenkoppula @Brian969