AWS::S3::Bucket EncryptionConfiguration - Amazon CloudFormation
SyntaxPropertiesSee also
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

AWS::S3::Bucket EncryptionConfiguration

Specifies encryption-related information for an Amazon S3 bucket that is a destination for replicated objects.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON

{
  "ReplicaKmsKeyID" : String
}

YAML

  ReplicaKmsKeyID: String

Properties

ReplicaKmsKeyID

Specifies the ID (Key ARN or Alias ARN) of the customer managed Amazon KMS key stored in Amazon Key Management Service (KMS) for the destination bucket. Amazon S3 uses this key to encrypt replica objects. Amazon S3 only supports symmetric encryption KMS keys. For more information, see Asymmetric keys in Amazon KMS in the Amazon Key Management Service Developer Guide.

Required: Yes

Type: String

Update requires: No interruption

See also