AWS::Cassandra::Table EncryptionSpecification - AWS CloudFormation
SyntaxProperties
Services or capabilities described in AWS documentation might vary by Region. To see the differences applicable to the AWS European Sovereign Cloud Region, see the AWS European Sovereign Cloud User Guide.

This is the new CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.

AWS::Cassandra::Table EncryptionSpecification

Specifies the encryption at rest option selected for the table.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON

{
  "EncryptionType" : String,
  "KmsKeyIdentifier" : String
}

YAML

  EncryptionType: String
  KmsKeyIdentifier: String

Properties

EncryptionType

The encryption at rest options for the table.

  • AWS owned key (default) - AWS_OWNED_KMS_KEY

  • Customer managed key - CUSTOMER_MANAGED_KMS_KEY

    Important

    If you choose CUSTOMER_MANAGED_KMS_KEY, a kms_key_identifier in the format of a key ARN is required.

Valid values: CUSTOMER_MANAGED_KMS_KEY | AWS_OWNED_KMS_KEY.

Required: Yes

Type: String

Allowed values: AWS_OWNED_KMS_KEY | CUSTOMER_MANAGED_KMS_KEY

Update requires: No interruption

KmsKeyIdentifier

Requires a kms_key_identifier in the format of a key ARN.

Required: No

Type: String

Update requires: No interruption