KMS key deletion protection enabled

ID: rule:aliyun:kms-key-delete-protection-enabled
Severity: medium

Description

KMS master key has deletion protection enabled, considered compliant. Keys not in enabled status and service keys (which cannot be deleted) are not applicable.

Reason for Violation

KMS key does not have deletion protection enabled

Recommendation

Enable deletion protection for KMS key to prevent accidental deletion of critical encryption keys

Resource Types

ALIYUN::KMS::Key

Description​

Reason for Violation​

Recommendation​

Resource Types​

Description

Reason for Violation

Recommendation

Resource Types