UntagResource - AWS Payment Cryptography Control Plane


Deletes a tag from an AWS Payment Cryptography key.


Tagging or untagging an AWS Payment Cryptography key can allow or deny permission to the key.

Cross-account use: This operation can't be used across different AWS accounts.

Related operations:

Request Syntax

{ "ResourceArn": "string", "TagKeys": [ "string" ] }

Request Parameters

The request accepts the following data in JSON format.


The KeyARN of the key whose tags are being removed.

Type: String

Length Constraints: Minimum length of 70. Maximum length of 150.

Pattern: arn:aws:payment-cryptography:[a-z]{2}-[a-z]{1,16}-[0-9]+:[0-9]{12}:key/[0-9a-zA-Z]{16,64}

Required: Yes


One or more tag keys. Don't include the tag values.

If the AWS Payment Cryptography key doesn't have the specified tag key, AWS Payment Cryptography doesn't throw an exception or return a response. To confirm that the operation succeeded, use the ListTagsForResource operation.

Type: Array of strings

Array Members: Minimum number of 0 items. Maximum number of 200 items.

Length Constraints: Minimum length of 1. Maximum length of 128.

Required: Yes

Response Elements

If the action is successful, the service sends back an HTTP 200 response with an empty HTTP body.



You do not have sufficient access to perform this action.

HTTP Status Code: 400


This request can cause an inconsistent state for the resource.

HTTP Status Code: 400


The request processing has failed because of an unknown error, exception, or failure.

HTTP Status Code: 500


The request was denied due to an invalid resource error.

HTTP Status Code: 400


The service cannot complete the request.

HTTP Status Code: 500


The request was denied due to request throttling.

HTTP Status Code: 400


The request was denied due to an invalid request error.

HTTP Status Code: 400

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: