Connecting AWS KMS with S3 - Server Side Encryption SSE | Scribe

    Connecting AWS KMS with S3 - Server Side Encryption SSE

    • Hafeez Baig |
    • 55 steps |
    • 6 minutes
    information ordinal icon
    Refer to the following guide to learn how to use IAM in the cloud\ <https://scribehow.com/shared/Creating_an_IAM_User_and_User_Group_in_AWS_Management_Console__hWNiiXlcRJKFqYZZEJD-cg>
    1
    Sign in to **AWS Management Console** as an **IAM User** **Pre-requisite** - Ensure you have selected the AWS region closest to your location\ For this guide, we will be using us-east-2 (Ohio) as a preferred choice
    2
    Type **Key Management Service** in the search bar and click on **Key Management Service** to view the Key Management Service Dashboard
    information ordinal icon
    **What is AWS Key Management Service?** AWS Key Management Service (KMS) is a managed service by Amazon Web Services (AWS) for creating, controlling, and managing encryption keys used to secure data stored on AWS services and in applications.
    3
    **Key Management Service (KMS)** dashboard wizard will open, on the left bar click on the **AWS managed keys**
    information ordinal icon
    **What are AWS managed keys?** AWS managed keys are encryption keys automatically generated and managed by AWS Key Management Service (KMS) on behalf of AWS customers, simplifying encryption tasks for data stored in various AWS services.
    4
    **AWS managed keys** wizard will open
    5
    On the left bar click on **Customer managed keys**
    information ordinal icon
    **What are Customer managed keys?** Customer managed keys are encryption keys created, imported, and controlled directly by AWS customers using AWS Key Management Service (KMS), offering full lifecycle management and control over key usage and access.
    6
    **Customer managed keys** wizard will open, on the top right corner click on the **Create key** button
    7
    **Configure key** wizard will open, select the option **Symmetric**
    information ordinal icon
    **What is Symmetric key type?** A symmetric key is a single key used for both encryption and decryption of data in symmetric encryption algorithms, where both parties share the same secret key.
    8
    Scroll the page and click on the **Next** button
    9
    **Add labels** wizard will open, type "**my-master-key**" in text input field
    10
    Scroll the page and click on the **Next** button
    11
    **Define key administrative permissions** wizard will open, select the Names **in28minutes-ops-user** and **in28minutes_dev**
    12
    Scroll the page and click on the **Next** button
    13
    **Define key usage permissions** wizard will open, scroll to the **Key users** section and select the Names **in28minutes-ops-user** and **in28minutes_dev**
    14
    Scroll to the **Other AWS accounts** section, here you can add another AWS account by clicking on the **Add another AWS account button**
    15
    Click on the **Next** button on the right side