AWS::EC2::VerifiedAccessEndpoint SseSpecification
AWS Verified Access provides server side encryption by default to data at rest using AWS-owned KMS keys. You also have the option of using customer managed KMS keys, which can be specified using the options below.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "CustomerManagedKeyEnabled" :
Boolean
, "KmsKeyArn" :String
}
YAML
CustomerManagedKeyEnabled:
Boolean
KmsKeyArn:String
Properties
CustomerManagedKeyEnabled
-
Enable or disable the use of customer managed KMS keys for server side encryption.
Valid values:
True
|False
Required: No
Type: Boolean
Update requires: No interruption
KmsKeyArn
-
The ARN of the KMS key.
Required: No
Type: String
Update requires: No interruption