Editing keys - AWS Key Management Service

Editing keys

You can change the following properties of your CMKs in the AWS KMS console and the AWS KMS API.

Description

You can change the key description on the details page for the CMK or by using the UpdateKeyDescription operation.

To edit the key description in the console, in the upper right corner of the details page for the CMK, choose Edit.

Key policy

You can change the key policy on the Key policy tab of the details page for the CMK or by using the PutKeyPolicy operation.

For details, see Changing a key policy.

Tags

You can create and delete tags on the Tags tab of the details page for the CMK or by using the TagResource and UntagResource operations.

For details, see Tagging keys.

Enable and disable

You can enable and disable CMKs of the Customer managed keys or AWS managed keys pages of the AWS KMS console. Or you can use the EnableKey and DisableKey operations.

For details, see Enabling and disabling keys.

Automatic key rotation

You can enable and disable automatic key rotation on the Key rotation tab of the details page for the CMK or by using the EnableKeyRotation and DisableKeyRotation operations.

For details, see Rotating customer master keys.

See also

Updating aliases