How to create a grant in AWS KMS

0 votes
Hi guys,

I have created a custom key in AWS KMS. I want to give access with the help of a grant. Can anyone tell me how to create a grant in AWS KMS?
Nov 19, 2020 in AWS by akhtar
• 38,170 points
69 views

1 answer to this question.

0 votes

Hi@akhtar,

You can add a grant to a customer master key (CMK). The grant allows the grantee principal to use the CMK when the conditions specified in the grant are met. When setting permissions, grants are an alternative to key policies.

$ aws kms create-grant --key-id ID --grantee-principal arn:aws:iam::123456789012:user/exampleUser --operations Decrypt --constraints EncryptionContextSubset={Department=IT} --retiring-principal arn:aws:iam::123456789012:role/adminRole
answered Nov 19, 2020 by MD
• 95,060 points

Related Questions In AWS

0 votes
2 answers

How to create a VPC in AWS?

There is another method i.e. creating an ...READ MORE

answered Feb 20, 2019 in AWS by Priyaj
• 58,100 points
203 views
0 votes
1 answer

How to create subnets in a VPC in AWS Console?

To create a subnet inside a VPC ...READ MORE

answered Feb 11, 2019 in AWS by Priyaj
• 58,100 points
126 views
0 votes
1 answer

How to create a S3 bucket in AWS Console?

To create a S3 bucket in AWS, ...READ MORE

answered Feb 13, 2019 in AWS by Priyaj
• 58,100 points
356 views
0 votes
1 answer
+1 vote
2 answers
0 votes
1 answer

How to create a customer managed CMK in AWS KMS?

Hi@akhtar, You can create a unique customer-managed customer master key (CMK) ...READ MORE

answered Nov 8, 2020 in AWS by MD
• 95,060 points
42 views
0 votes
1 answer

How to create a custom key store in AWS KMS?

Hi@akhtar, AWS Key Management Service (KMS) makes it easy ...READ MORE

answered Nov 18, 2020 in AWS by MD
• 95,060 points
86 views