Skip to content

Latest commit

 

History

History
29 lines (18 loc) · 506 Bytes

AWS052.md

File metadata and controls

29 lines (18 loc) · 506 Bytes

Pattern: RDS encryption has not been enabled at a DB Instance level

Issue: -

Description

Encryption should be enabled for an RDS Database instances.

When enabling encryption by setting the kms_key_id.

Resolution: Enable encryption for RDS clusters and instances.

Examples

Example of incorrect code:

resource "aws_db_instance" "bad_example" {
	
}

Example of correct code:

resource "aws_db_instance" "good_example" {
	storage_encrypted  = true
}