diff --git a/cfngoat.yaml b/cfngoat.yaml
index 2310f870..0fa556a8 100644
--- a/cfngoat.yaml
+++ b/cfngoat.yaml
@@ -263,6 +263,7 @@ Resources:
             AWS: !Sub arn:aws:iam::${AWS::AccountId}:root
           Action: kms:*
           Resource: '*'
+      EnableKeyRotation: True
 
   LogsKeyAlias:
     Type: AWS::KMS::Alias