AWS - Can a KMS replica key be created in a different account from the primary-CodePudding

Home > front end > AWS - Can a KMS replica key be created in a different account from the primary

AWS - Can a KMS replica key be created in a different account from the primary

Time：02-18

If I created a multi-region CMK in account A, would I be able to create replica keys in another account in a different region, assuming the right permissions are granted? Or must replica keys be created in the same AWS account?

CodePudding user response：

Sadly not. Replica keys are account specific. If you want other accounts to access these keys, you have to setup such permissions through KMS key policies in account A.

Page link：https//www.codepudding.com/frontend/305454.html

Prev:Limitations on starting point of cidr ranges

Next:how to create a serverless endpoint in sagemaker?

Tags：

amazon-web-services

amazon-kms

Links：
CodePudding