redshift-serverless-namespace-cmk-encryption

Focus mode

redshift-serverless-namespace-cmk-encryption - AWS Config

Checks if Amazon Redshift Serverless namespaces are encrypted by customer managed AWS KMS keys. The rule is NON_COMPLIANT if a namespace is not encrypted by a customer managed key. Optionally, you can specify a list of KMS keys for rule to check.

Identifier: REDSHIFT_SERVERLESS_NAMESPACE_CMK_ENCRYPTION

Resource Types: AWS::RedshiftServerless::Namespace

Trigger type: Periodic

AWS Region: All supported AWS regions except Middle East (Bahrain), Asia Pacific (Thailand), Africa (Cape Town), Asia Pacific (Hyderabad), Asia Pacific (Osaka), Asia Pacific (Malaysia), Asia Pacific (Melbourne), Europe (Milan), Mexico (Central), Canada West (Calgary) Region

Parameters:

kmsKeyArns (Optional)
Type: CSV: Comma-separated list of Amazon Resource Names (ARNs) of customer managed keys for the rule to check. If provided, the rule is NON_COMPLIANT if an Amazon Redshift Serverless namespace is not encrypted with one of these KMS keys.

AWS CloudFormation template

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

redshift-serverless-default-db-name-check

redshift-serverless-publish-logs-to-cloudwatch

Next topic:

redshift-serverless-publish-logs-to-cloudwatch

Previous topic:

redshift-serverless-default-db-name-check

Select your cookie preferences

Customize cookie preferences

Essential

Performance

Functional

Advertising

Unable to save cookie preferences

redshift-serverless-namespace-cmk-encryption

AWS CloudFormation template

Next topic:

Previous topic:

Need help?

On this page

Did this page help you?