Difference between revisions of "Error: updating KMS Key"
Jump to navigation
Jump to search
| (4 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| − | │ Error: updating [[KMS Key]] (123456): key rotation: AccessDeniedException: User: | + | │ Error: updating [[KMS Key]] (123456): key rotation: [[AccessDeniedException]]: User: |
| − | arn:aws:sts::12345-role/path/gitHubSession is not authorized to perform: kms:DisableKeyRotation on | + | arn:aws:sts::12345-role/path/gitHubSession is not authorized to perform: [[kms:DisableKeyRotation]] on |
resource: arn:aws:kms:us-east-1:352711653659:key/123456 because no [[identity-based policy]] allows the | resource: arn:aws:kms:us-east-1:352711653659:key/123456 because no [[identity-based policy]] allows the | ||
kms:DisableKeyRotation action | kms:DisableKeyRotation action | ||
| Line 6: | Line 6: | ||
│ | │ | ||
│ with module.bootstrap_account_region.module.KMS.aws_kms_key.eks_kms_key, | │ with module.bootstrap_account_region.module.KMS.aws_kms_key.eks_kms_key, | ||
| − | │ on .terraform/modules/bootstrap_account_region/modules/KMS/main.tf line 5, in resource "aws_kms_key" "eks_kms_key": | + | │ on .terraform/modules/bootstrap_account_region/modules/KMS/main.tf line 5, in resource "[[aws_kms_key]]" "eks_kms_key": |
| − | │ 5: resource " | + | │ 5: resource "aws_[[kms]]_key" "[[eks_kms_key]]" { |
== See also == | == See also == | ||
| − | * {{KMS}} | + | * {{aws_kms_key}} |
| + | * {{AWS KMS}} | ||
* {{tf apply}} | * {{tf apply}} | ||
[[Category:TF]] | [[Category:TF]] | ||
Latest revision as of 11:21, 19 February 2024
│ Error: updating KMS Key (123456): key rotation: AccessDeniedException: User: arn:aws:sts::12345-role/path/gitHubSession is not authorized to perform: kms:DisableKeyRotation on resource: arn:aws:kms:us-east-1:352711653659:key/123456 because no identity-based policy allows the kms:DisableKeyRotation action │ status code: 400, request id: 12345 │ │ with module.bootstrap_account_region.module.KMS.aws_kms_key.eks_kms_key, │ on .terraform/modules/bootstrap_account_region/modules/KMS/main.tf line 5, in resource "aws_kms_key" "eks_kms_key": │ 5: resource "aws_kms_key" "eks_kms_key" {
See also[edit]
Advertising:
