Jul 9, 2018

You can perform the following management actions on your AWS KMS master keys:



    Create, describe, and list master keys

    Enable and disable master keys

    Create and view grants and access control policies for your master keys

    Enable and disable automatic rotation of the cryptographic material in a master key

    Import cryptographic material into an AWS KMS master key

    Tag your master keys for easier identification, categorizing, and tracking

    Create, delete, list, and update aliases, which are friendly names associated with your master keys

    Delete master keys to complete the key lifecycle