Run CloudFormation template 5.tgw-endpoints.yaml to deploy a KMS VPC endpoint in the Datacenter Service VPC as well as add AWS Route53 Private Zone for the endpoint which is Associated with the NP2 VPC.
1) For the Specify stack details give the stack a name, enter the name of your first stack (must be entered exactly to work). Click Next.
1) For Configuration stack options we don’t need to change anything, so just click Next in the bottom right.
1) Scroll down to the bottom of the Review name_of_your_stack and check the I acknowledge that AWS CloudFormation might create IAM resources with custom names. Click the Create button in the lower right.
1) wait for the Stack to show Create_Complete.