IoT / Client / update_encryption_configuration

update_encryption_configuration

IoT.Client.update_encryption_configuration(**kwargs)

Updates the encryption configuration. By default, all Amazon Web Services IoT Core data at rest is encrypted using Amazon Web Services owned keys. Amazon Web Services IoT Core also supports symmetric customer managed keys from Amazon Web Services Key Management Service (KMS). With customer managed keys, you create, own, and manage the KMS keys in your Amazon Web Services account. For more information, see Data encryption in the Amazon Web Services IoT Core Developer Guide.

See also: AWS API Documentation

Request Syntax

response = client.update_encryption_configuration(
    encryptionType='CUSTOMER_MANAGED_KMS_KEY'|'AWS_OWNED_KMS_KEY',
    kmsKeyArn='string',
    kmsAccessRoleArn='string'
)

Parameters:

• encryptionType (string) –

  [REQUIRED]

  The type of the Amazon Web Services Key Management Service (KMS) key.

• kmsKeyArn (string) – The ARN of the customer-managed KMS key.

• kmsAccessRoleArn (string) – The Amazon Resource Name (ARN) of the IAM role assumed by Amazon Web Services IoT Core to call KMS on behalf of the customer.

Return type:

dict

Returns:

Response Syntax

{}

Response Structure

• (dict) –

Exceptions

• IoT.Client.exceptions.InvalidRequestException

• IoT.Client.exceptions.ThrottlingException

• IoT.Client.exceptions.UnauthorizedException

• IoT.Client.exceptions.ServiceUnavailableException

• IoT.Client.exceptions.InternalFailureException