Questions tagged [amazon-kms]

According AWS KMS, keys can be rotated once every year. However, there is no way I can define a custom time period for that. However, I can keep changing the same in the bucket's policy manually. So, is there anyway I can automate that?

so my issue here is that terraform really does not like a command I'm trying to run using an external datasource. I'm trying to hack my way around a problem where terraform wont wait for a KMS encrypt operation to complete before attempting to use…

I'm using Terraform and trying to set up automatic export of VPC flow logs into an S3 bucket in the same AWS account and region (ca-central-1) that has default encryption turned on with AWS-KMS (using a CMK). Even after trying many permutations of…