Sharing CMKs Across Multiple AWS Accounts
This lesson looks at how you can use the same Customer Master Keys (CMKs) for encryption across multiple AWS accounts using the Key Management Service. It will define the key principles and components required to share the CMKs in addition to a demonstration on how to carry out those actions.
Learning Objectives
By the end of this lesson, you will have the knowledge and understanding of how to share your CMKs used within the AWS Key Management Service service across each of your AWS accounts, allowing you to implement encryption using the same keys
Intended Audience
This lesson has been created for security engineers and architects who are responsible for managing and implementing data encryption methods across AWS accounts.
Prerequisites
To get the most from this lesson you should be familiar with the Key Management Service and IAM permissions and JSON policies. For more information relating to both AWS IAM and KMS, please see our existing lessons here:
Identity & Access Management (IAM)
Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.
To date, Stuart has created 250+ courses relating to cloud computing reaching over 1 million+ students.
Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.
He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.
Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.