Bobcares
Client Area
Emergency Support
Amazon Web Services (AWS) | Latest | Server Management

AWS KMS key to encrypt your metrics exports | Guide

by | Feb 2, 2022

AWS KMS key to encrypt your metrics exports – The key to AMS KMS key management.

At Bobcares, we offer solutions for every query, big and small, as a part of our AWS Support Services.

Let’s take a look at how our Support Team is ready to help customers with using an AWS KMS key to encrypt metrics exports.

How to use AWS KMS key to encrypt your metrics exports

AWS Key Management Service or AWS KMS offers a single control point to oversee keys. Furthermore, it also helps define policies consistently across the various integrated services as well as our own applications. In other words, we can easily create and manage cryptographic keys in addition to controlling their usage across other AWS services.

AWS KMS key to encrypt your metrics exports

If you are looking for a way to use an AWS KMS key to encrypt your metric report, you are in the right place. All we have to do is update the key policy. Follow these steps, courtesy of our skilled Support Engineers at Bobcares, and you will get the job done in a jiffy:

    1. First, we will sign in to the AWS Management Console with the AWS account that owns the customer-managed key.
    2. Next, we have to open the AWS KMS console at this link.
    3. Then we will change the AWS Region with the help of the Region selector option.
    4. After that, we have to select Customer managed keys from the navigation pane.
    5. Next, choose the key we plan on using to encrypt the metrics exports. It is vital to remember that AWS KMS keys are Regions Specific. In other words, the keys must be in the same Region as the metrics export destination S3 bucket.
    6. Then, head to Key Policy and select Switch to policy view.
    7. Here, we will select Edit to update the key policy.
    8. Finally, add the following key policy to the current key policy underEdit key policy and select Save changes: 
      {
    "Sid": "Allow Amazon S3 Storage Lens use of the KMS key",
     "Effect": "Allow",
    "Principal": {
        "Service": "storage-lens.s3.amazonaws.com"
    },
    "Action": [
        "kms:GenerateDataKey"
    ],
    "Resource": "*",
    "Condition": {
       "StringEquals": {
           "aws:SourceArn": "arn:aws:s3:us-east-1:source-account-id:storage-lens/your-dashboard-name",
           "aws:SourceAccount": "source-account-id"
        }
     }
}

    Alternatively, we can use the AWS KMS PUT key policy in order to copy the key policy.

    [Looking for a solution to another query? We are just a click away.]

    Conclusion

    In essence, our skilled Support Engineers at Bobcares demonstrated how to use the AWS KMS key to encrypt metrics exports.

    PREVENT YOUR SERVER FROM CRASHING!

    Never again lose customers to poor server speed! Let us help you.

    Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.

    GET STARTED

Related posts:

  1. Net::OpenTimeout error in CodeDeploy | How to resolve
  2. MalformedPolicyDocument errors in AWS CloudFormation | How to resolve
  3. CloudFront “Access control allow origin header” error
  4. AWS ECS CPU utilization : Troubleshooting

0 Comments

Submit a Comment

Your email address will not be published. Required fields are marked *

server management

Spend time on your business, not on your servers.

TALK TO US

Or click here to learn more.

Related Articles

  1. Net::OpenTimeout error in CodeDeploy | How to resolve
  2. MalformedPolicyDocument errors in AWS CloudFormation | How to resolve
  3. CloudFront “Access control allow origin header” error
  4. AWS ECS CPU utilization : Troubleshooting

Never again lose customers to poor
server speed! Let us help you.

GET STARTED