Before you start - Futurex Documentation

Verify your environment meets these requirements.

Supported hardware

CryptoHub, 7.0.3.x or later.

You must configure the CryptoHub Dashboard connection with a TLS certificate issued by a publicly trusted Certificate Authority.

Required access

An account on the CryptoHub with administrator permissions to deploy new services.
An AWS IAM role assigned the AWSKeyManagementServicePowerUser AWS-managed policy, along with the customer-managed policy below, which grants additional permissions needed to test XKS end-to-end:

JSON

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "XksCustomKeyStoreAdmin",
      "Effect": "Allow",
      "Action": [
        "kms:CreateCustomKeyStore",
        "kms:DescribeCustomKeyStores",
        "kms:ConnectCustomKeyStore",
        "kms:DisconnectCustomKeyStore",
        "kms:UpdateCustomKeyStore",
        "kms:DeleteCustomKeyStore"
      ],
      "Resource": "*"
    }
  ]
}

⌘I