Learn how to manage encryption using AWS CloudHSM
kmsuser
user in the AWS CloudHSM cluster with the crypto-user role.Navigate to Key store creation page
AWS KMS
> AWS CloudHSM key stores
and click Create key store.Add key store name
Select HSM cluster
Upload trust anchor certificate
Provide cluster user password
kmsuser
crypto-user in your cluster.
Finish key store creation
Navigate to AWS KMS key creation page
AWS KMS
> Customer managed keys
and click Create.Set key options
Symmetric
and Key usage to Encrypt and decrypt
.
Select key material origin
AWS CloudHSM key store
. Then, click next.
Choose key store
Finish KMS key creation