Create External Key Store in AWS

To create a External Key Store in AWS:

1. From AWS portal select Key Management Service (KMS).

2. In the left pane select External key stores.

3. Select Create external key store. The Create external key store screen appears.

4. In the Custom key store name section, enter the KeyControl Vault node FQDN.

5. In the Proxy connectivity section, select Public endpoint and enter the Proxy URI endpoint: https:// followed by FQDN of KeyControl Vault.

6. In the Proxy configuration section:

   • Skip the Proxy URI path prefix

   • Enter Proxy credential: Access key ID (the access key ID copied from KeyControl Vault).
   • Enter Proxy credential: Secret access key (the secret access key copied from KeyControl Vault).

7. Select Create external key store.