EC2 / Client / reset_ebs_default_kms_key_id

reset_ebs_default_kms_key_id

EC2.Client.reset_ebs_default_kms_key_id(**kwargs)

Resets the default KMS key for EBS encryption for your account in this Region to the Amazon Web Services managed KMS key for EBS.

After resetting the default KMS key to the Amazon Web Services managed KMS key, you can continue to encrypt by a customer managed KMS key by specifying it when you create the volume. For more information, see Amazon EBS encryption in the Amazon Elastic Compute Cloud User Guide.

See also: AWS API Documentation

Request Syntax

response = client.reset_ebs_default_kms_key_id(
    DryRun=True|False
)

Parameters:

DryRun (boolean) – Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

Return type:

dict

Returns:

Response Syntax

{
    'KmsKeyId': 'string'
}

Response Structure

• (dict) –

  • KmsKeyId (string) –

    The Amazon Resource Name (ARN) of the default KMS key for EBS encryption by default.