Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

AWS - Can a KMS replica key be created in a different account from the primary

Tags:

amazon-web-services

amazon-kms

If I created a multi-region CMK in account A, would I be able to create replica keys in another account in a different region, assuming the right permissions are granted? Or must replica keys be created in the same AWS account?

like image 560
Adrian Pang Avatar asked Oct 28 '25 00:10

Adrian Pang

1 Answers

Sadly not. Replica keys are account specific. If you want other accounts to access these keys, you have to setup such permissions through KMS key policies in account A.

like image 129
Marcin Avatar answered Oct 29 '25 17:10

Marcin
Sign in to Comment

Related questions

Enable DATA Api for Amazon Aurora
Python SSH tunnel into EC2 and connect to DocumentDB
Why won't elastic beanstalk render css for the django admin site?
How to get cost for each EC2, not total cost for all EC2 from AWS API
How to stop AWS RDS for longer duration?
Can we attach SNS notification when any aws lambda function gets timed-out?
"Unable to parse API definition because of a malformed integration at path /price. (Service: AmazonApiGateway; Status Code: 400;
using role instead of keys to get signed url in s3 but nothing returned and no errors
Starting multiple instances and wait until they are completely started using boto3
How to disable innodb_doublewrite for MySQL at Amazon RDS?
How to query aws resources using boto3 and asyncio? Is this possible?
AWS cli command to list all the IAM users with last activity for than 180 days ago
Why can't I upload a file to s3 with my Lambda function?
import or require not working on aws lamda
Is it possible to generate a single presigned URL which can allow MULTIPLE unique objects to be uploaded?
cloud-init - I am trying to copy files to Windows EC2 instance through cloud init by passing it through user data
Why am I only getting one message from my SQS Queue?
AWS API Gateway - Monitor specific endpoints

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!