1 Antwort
- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
0
Hi There
After the instance is running, modifying the KmsKeyId
parameter of the EBS
volume inside the BlockDeviceMapping
property results in instance replacement.
You cannot change the encryption key on an EBS volume. You need to take a snapshot and create new volumes with the new key See https://aws.amazon.com/premiumsupport/knowledge-center/ebs-change-encryption-key/
Can you clarify though, have you already changed the EBS encryption outside of CloudFormation?
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor 3 Jahren
- AWS OFFICIALAktualisiert vor einem Jahr
- AWS OFFICIALAktualisiert vor 2 Jahren
Hello, I've not updated teh KMS key yet, but will be following steps mentioned in this article and attach the new volumes to EC2 server, https://aws.amazon.com/premiumsupport/knowledge-center/ebs-change-encryption-key/
How can I avoid instance replacement.