1回答
- 新しい順
- 投票が多い順
- コメントが多い順
1
Hi Nathan,
DataSync recently released support for EFS TLS 1.2 and utilizing IAM roles for DataSync within EFS file system policies. Now, when creating your EFS location you can specify TLS 1.2 and optionally specify an IAM role as part of the location to be used as a principal inside an EFS file system policy.
The DataSync docs have details on how to accomplish this. https://docs.aws.amazon.com/datasync/latest/userguide/create-efs-location.html
回答済み 2年前
Can you please elaborate? Where is the policy being set? Are you introducing encryption in transit in 1, 2 or 3 as per the diagram in https://docs.aws.amazon.com/datasync/latest/userguide/encryption-in-transit.html?
Our data is on an EFS drive. That diagram relates to data sitting on on-prem servers, so it is not clear how it applies to the situation in question. The policy was created through the website by checking the "Enforce in-transit encryption for all clients" box on the "File System Policy" tab for the EFS drive in question.