1 Respuesta
- Más nuevo
- Más votos
- Más comentarios
0
Hi There
After the instance is running, modifying the KmsKeyId
parameter of the EBS
volume inside the BlockDeviceMapping
property results in instance replacement.
You cannot change the encryption key on an EBS volume. You need to take a snapshot and create new volumes with the new key See https://aws.amazon.com/premiumsupport/knowledge-center/ebs-change-encryption-key/
Can you clarify though, have you already changed the EBS encryption outside of CloudFormation?
Contenido relevante
- OFICIAL DE AWSActualizada hace 3 años
- OFICIAL DE AWSActualizada hace 2 años
- OFICIAL DE AWSActualizada hace 2 años
Hello, I've not updated teh KMS key yet, but will be following steps mentioned in this article and attach the new volumes to EC2 server, https://aws.amazon.com/premiumsupport/knowledge-center/ebs-change-encryption-key/
How can I avoid instance replacement.