AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
Associates the specified AWS Key Management Service (AWS KMS) customer master key (CMK) with the specified log group.
Associating an AWS KMS CMK with a log group overrides any existing associations between the log group and a CMK. After a CMK is associated with a log group, all newly ingested data for the log group is encrypted using the CMK. This association is stored as long as the data encrypted with the CMK is still within Amazon CloudWatch Logs. This enables Amazon CloudWatch Logs to decrypt this data whenever it is requested.
Note that it can take up to 5 minutes for this operation to take effect.
If you attempt to associate a CMK with a log group but the CMK does not exist or the
CMK is disabled, you will receive an InvalidParameterException error.
For .NET Core and PCL this operation is only available in asynchronous form. Please refer to AssociateKmsKeyAsync.
Namespace: Amazon.CloudWatchLogs
Assembly: AWSSDK.CloudWatchLogs.dll
Version: 3.x.y.z
public virtual AssociateKmsKeyResponse AssociateKmsKey( AssociateKmsKeyRequest request )
Container for the necessary parameters to execute the AssociateKmsKey service method.
| Exception | Condition |
|---|---|
| InvalidParameterException | A parameter is specified incorrectly. |
| OperationAbortedException | Multiple requests to update the same resource were in conflict. |
| ResourceNotFoundException | The specified resource does not exist. |
| ServiceUnavailableException | The service cannot complete the request. |
.NET Framework:
Supported in: 4.5, 4.0, 3.5
Portable Class Library:
Supported in: Windows Store Apps
Supported in: Windows Phone 8.1
Supported in: Xamarin Android
Supported in: Xamarin iOS (Unified)
Supported in: Xamarin.Forms
