kms/aws.sdk.kotlin.services.kms.model/CreateCustomKeyStoreRequest/Builder/xksProxyAuthenticationCredential

xksProxyAuthenticationCredential

fun xksProxyAuthenticationCredential(block: XksProxyAuthenticationCredentialType.Builder.() -> Unit)

construct an aws.sdk.kotlin.services.kms.model.XksProxyAuthenticationCredentialType inside the given block

var xksProxyAuthenticationCredential: XksProxyAuthenticationCredentialType?

Specifies an authentication credential for the external key store proxy (XKS proxy). This parameter is required for all custom key stores with a CustomKeyStoreType of EXTERNAL_KEY_STORE.

The XksProxyAuthenticationCredential has two required elements: RawSecretAccessKey, a secret key, and AccessKeyId, a unique identifier for the RawSecretAccessKey. For character requirements, see kms/latest/APIReference/API_XksProxyAuthenticationCredentialType.html.

KMS uses this authentication credential to sign requests to the external key store proxy on your behalf. This credential is unrelated to Identity and Access Management (IAM) and Amazon Web Services credentials.

This parameter doesn't set or change the authentication credentials on the XKS proxy. It just tells KMS the credential that you established on your external key store proxy. If you rotate your proxy authentication credential, use the UpdateCustomKeyStore operation to provide the new credential to KMS.