AWS Requirements for BYOK

To use AWS with BYOK, you must create a new unique service account user in your AWS account.

Important:

Do not use an existing user account or existing access key. Create the service account with the following permissions see AWS BYOK Service Account Requirements.
Create an access key by logging in to AWS using the service account.
Do not use the access key more than one time.
Do not delete any access keys from the service account.
Do not attach the same AWS account to multiple KeyControl clusters.
Do not share the AWS BYOK service account.