From the course: AWS Certified Security - Specialty (SCS-C03) Cert Prep

Unlock this course with a free trial

Join today to access over 25,600 courses taught by industry experts.

[HOL] Schedule Key Deletion

[HOL] Schedule Key Deletion - Amazon Web Services (AWS) Tutorial

From the course: AWS Certified Security - Specialty (SCS-C03) Cert Prep

Start my 1-month free trial Buy for my team

[HOL] Schedule Key Deletion

Hey guys, in this lesson I'm going to show you how you can schedule the deletion of the KMS keys that we've been using in the preceding lessons. So back in KMS we have our two keys here. Now what we need to do is select the keys and go to key actions and then we've got a couple options here. So one is we can disable the key. So what does disabling do? means that the key is no longer able to be used. That simple. So if somebody tried to decrypt some data using this key, they just simply wouldn't be able to. So you can go ahead and do that. And it's going to tell you the key cannot be used in cryptographic operations once we've disabled it. So we can disable the key. It's important to do this because what we want to do is validate just in case we've forgotten something. And the other part of that is the AWS also has this scheduling option. So again, it's about making sure people don't make a mistake. Now the lowest we can put this to is seven days. So I'm gonna choose seven. What it…

Contents