Status: IN
Organization event data stores in CloudTrail Lake must use an existing KMS key from the management account — a new key cannot be created during setup.
Source: entries/2026/03/12/awscloudtrail-latest-userguide-event-data-store-integration-eventshtml.md