AWS Key Management Service (AWS KMS) lets you create, manage, and control cryptographic keys across your applications and AWS services.
You can find detailed instructions here.
Amazon Web Services will require the following items prior to configurating the Egnyte domain:
- Customer needs to use symmetric key
- AWS KMS key, by default, you get a KMS key for symmetric encryption.
- A symmetric encryption KMS key represents a 256-bit AES-GCM encryption key
- Key usage is ENCRYPT_DECRYPT
Find more information of the above requirements here.
Once all the required items are acquired, input them into the Amazon KMS option in the Enterprise Key Management section to complete the configuration.
The following values needs to be input:
Username – IAM Access key for the user
Password – IAM Secret key for the user
Region – provide appropriate region from Amazon’s region list - for example: kms.us-west-1.amazonaws.com
Key name – provide ARN (Amazon Resource Name) - for example: arn:aws:kms:us-west-2:111122223333:alias/ExampleAlias