Managing the encryption method in Amazon Q Developer

By default, Amazon Q Developer uses an AWS managed key for encryption. For some features, you can set up a customer managed key to encrypt data. For a list of features that support encryption with customer managed keys, see Data encryption.

To set the key used for encryption, complete the following procedure.

Open the Amazon Q Developer console.

To use the Amazon Q Developer console, you must have the permissions defined in Allow administrators to use the Amazon Q Developer console.
Choose Settings.
Choose Edit in the Amazon Q Developer account details panel.
On the Edit details page, expand the Encryption key - optional section.
To use a customer managed key for encryption, select Customize encryption settings (advanced).
In the search bar that appears, search for the name of the key you want to use for encryption or enter the key ARN.

If you haven't created a key yet, choose Create an AWS KMS key, and then return to this page to add your key.
To disable encryption with your customer managed key and revert to an AWS managed key for encryption, deselect Customize encryption settings (advanced).

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Managing account details

Enabling trusted access