How to Create Symmetric Key management Service on Amazon Web Service(AWS).

AWS Key Management Service (KMS) makes it easy to create and manage cryptographic keys and control their use across a wide range of AWS services and in applications. AWS KMS protects the customer master keys (CMKs) that you use to protect data and data keys.

Key management service provide two type of key:Symmetric & Asymmetric.

Symmetric Key management Service

Symmetic Key management(SKMS) is a single encryption key that is used for both encrypt & decrypt the data.

  • Login to aws portal.
  • Click on Services.


Fig 1


  • Under Security, Identity,& Compliance select Key Management Service.


Fig 2


  • Click on Create Key.


Fig. 3


  • Select Symmetric Key type.
  • Click on Advanced options.


Fig. 4


  • Select KMS.
  • Click on Next.


Fig. 5


  • Provide Alias name.
  • Click on Add Tag.


Fig. 6


  • Provide tag key name & value.
  • Click on Next


Fig. 7



Fig. 8


  • Enable Key administrators to delete this key
  • Click on Next.


Fig 9


  • Select exiting Key usage permission

Fig 10


  • We can add multiple AWS account.
  • Click on Add another AWS account & provide AWS account ID.
  • Click on Next.


Fig 11


  • Review all Key Configurations.


Fig 12


  • Click on Finish.


Fig 14


  • After sometime Symmetric KMS is ready.


Fig 15


Create Symmetric KMS using Shell

aws kms create-key –key-usage <value>–tags TagKey=Name,TagValue=Test  –description “example” –customer-master-key-spec SYMMETRIC_DEFAULT –origin <value


Leave a Reply