Puppet Task: kms_aws_create_key

Defined in:: tasks/kms_aws_create_key.json,
tasks/kms_aws_create_key.rb

Overview

Creates a customer master key (CMK) in the caller's AWS account. You can use a CMK to encrypt small amounts of data (4 KiB or less) directly. But CMKs are more commonly used to encrypt data encryption keys (DEKs), which are used to encrypt raw data. For more information about DEKs and the difference between CMKs and DEKs, see the following: The GenerateDataKey operation AWS Key Management Service Concepts in the AWS Key Management Service Developer Guide You cannot use this operation to create a CMK in a different AWS account.

Supports noop? false

Parameters

policy (Optional[String[1]]) —
description (Optional[String[1]]) —
key_usage (Optional[String[1]]) —
origin (Optional[String[1]]) —
bypass_policy_lockout_safety_check (Optional[String[1]]) —
tags (Optional[String[1]]) —