[packer] regions_kms_key_id works in CentOS but not in Windows 2012R2.

Fri, 20 Apr 2018 15:34:06 -0700 

Hi there?

I was able to create custom KMS encrypted EBS ami images on CentOS7 as 
shown below (really thanks for adding this features in Packer). However, 
with the same methods, I tried to build/create custom KMS encrypted ebs AMI 
on Windows 2012R2 based. The issue I'm having is that even though I 
provided the custom KMS keys in variables, the AMI on Windows 2012R2 gets 
encrypted with the default AWS/EBS KMS encryption. Is there any way you 
could guide to the correctly direction?


"variables":
{
.........
"kms_key_id_us-west-1" : "arn:aws:kms:us-west-1:xxxx:key/
xxxxx-xxx-xxxx-xxxx-xxxxxxxxxxx",
"kms_key_id_us-east-1" : "arn:aws:kms:us-east-1:xxxx:key/
xxxxx-xxx-xxxx-xxxx-xxxxxxxxxxx",
"kms_key_id_eu-west-2" : "arn:aws:kms:eu-west-2:xxxx:key/
xxxxx-xxx-xxxx-xxxx-xxxxxxxxxxx",
"kms_key_id_eu-central-1" : "arn:aws:kms:eu-central-1:xxxx:key/
xxxxx-xxx-xxxx-xxxx-xxxxxxxxxxx" 
},

"builders":
 { "name" : "aws", "type" : "amazon-ebs", "access_key" : "{{user 
`aws_access_key`}}", "secret_key" : "{{user `aws_secret_key`}}", "region" : 
"{{user `aws_region`}}", "instance_type" : "t2.xlarge", "ssh_timeout"   : 
"10m", ....... "ssh_username" : "xxxx", "force_deregister" : true, 
"kms_key_id" : "{{user `kms_key_id__us-west-1`}}", "region_kms_key_ids" : { 
"us-west-1": 
"{{user `kms_key_id_us-west-1`}}",
         "us-west-1": "{{user `kms_key_id_us-east-1`}}",
"us-west-1": "{{user `kms_key_id_eu-west-1`}}",
"us-west-1": "{{user `kms_key_id_ue-central-1`}}"
       }, 
       ......, 
        "ami_regions" : [ 
             "us-west-1",
             "us-east-1",
             "eu-west-2",
             "eu-central-1"
        ],

-- 
This mailing list is governed under the HashiCorp Community Guidelines - 
https://www.hashicorp.com/community-guidelines.html. Behavior in violation of 
those guidelines may result in your removal from this mailing list.

GitHub Issues: https://github.com/mitchellh/packer/issues
IRC: #packer-tool on Freenode
--- 
You received this message because you are subscribed to the Google Groups 
"Packer" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/d/msgid/packer-tool/6051af69-e2bf-46ba-8a2a-216b3d1d503e%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Reply via email to