AWS Config Rule: RDS Snapshot Encrypted

RDS_SNAPSHOT_ENCRYPTED

Fernando Honig

Last Update seitsemän kuukautta sitten

Description: Checks whether Amazon Relational Database Service (Amazon RDS) DB snapshots are encrypted. The rule is NON_COMPLIANT, if the Amazon RDS DB snapshots are not encrypted.


Trigger type:
Configuration changes


AWS Region: All supported AWS regions except Asia Pacific (Osaka), Europe (Milan), Israel (Tel Aviv), Europe (Spain) Region


How to Resolve Manually

To resolve this manually, you will need to ensure that the snapshots you have taken are encrypted. If you currently have unencrypted snapshots in your inventory it may be wise to remove them, and then setup new snapshots of your RDS instances which are encrypted, with either your AWS default KMS or one that you created for your AWS account.


You will be able to find these settings in the "Encryption" part of the Snapshot details when creating a new snapshot or copying an existing one.


Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

1 out of 1 liked this article

Still need help? Message Us