aws.kms
Supported platform
- aws
Description
AWS Key Management Service (KMS)
Use the aws.kms resource to assess the configuration of AWS KMS keys.
Fields
| ID | TYPE | DESCRIPTION |
|---|---|---|
| keys | []aws.kms.key | A list of all customer master keys (CMKs) in the caller's AWS account (across all regions) |
Examples
Ensure rotation for customer created CMKs is enabled
aws.kms.keys.where( metadata['KeyState'] == "Enabled" ).all( keyRotationEnabled == true )