Terraform resource for managing an AWS KMS (Key Management) Custom Key Store.
resource "aws_kms_custom_key_store" "test" {
cloud_hsm_cluster_id = var.cloud_hsm_cluster_id
custom_key_store_name = "kms-custom-key-store-test"
key_store_password = "noplaintextpasswords1"
trust_anchor_certificate = file("anchor-certificate.crt")
}
The following arguments are required:
cloud_hsm_cluster_id
- (Required) Cluster ID of CloudHSM.custom_key_store_name
- (Required) Unique name for Custom Key Store.key_store_password
- (Required) Password for kmsuser
on CloudHSM.trust_anchor_certificate
- (Required) Customer certificate used for signing on CloudHSM.This resource exports the following attributes in addition to the arguments above:
id
- The Custom Key Store IDcreate
- (Default 15m
)update
- (Default 15m
)delete
- (Default 15m
)In Terraform v1.5.0 and later, use an import
block to import KMS (Key Management) Custom Key Store using the id
. For example:
import {
to = aws_kms_custom_key_store.example
id = "cks-5ebd4ef395a96288e"
}
Using terraform import
, import KMS (Key Management) Custom Key Store using the id
. For example:
% terraform import aws_kms_custom_key_store.example cks-5ebd4ef395a96288e