You must be logged in to view saved presets
Prevent a User from Disabling or Deleting Any CMKs
An IAM policy that prevents a user from disabling or deleting any CMKs, even when another IAM policy or a key policy allows these permissions.
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"kms:DisableKey",
"kms:ScheduleKeyDeletion"
],
"Resource": "*",
"Effect": "Deny"
}
]
}Actions
Customize Template
No policy variables to customize
* Required field
© 2024 asecurecloud. All rights reserved.