all InfoSec news
How to restrict default access to KMS via key policy with Terraform
DEV Community dev.to
The objective of this article is to implement KMS key access security for AWS Identity and Access Management (IAM) identities by changing the default policy when provisioning the resource with Terraform.
This is a practical example, so I first recommend recommend read this post to better understand the objective of restricted key policy.
Note: This article demonstrates the AWS account ID 123456789012 with existing role named TERRAFORM, ADMIN and ANALYST. These values must be replaced for your environment.
The …
access access management access security article aws aws identity aws identity and access management changing default iam identities identity identity and access identity and access management key kms management policy resource security terraform understand