By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Enable tls for existing ElasticCache

0

I'm planning to enable TLS and data at rest encryption for my ElasticCache 6.0.5 cluster with consistent data .

  • Remove sg rule to block new connection to elasticache for consistency
  • Create backup
  • Restore from backup

Is there any other approach for enabling tls ?

Topics
Database
Tags
Amazon ElastiCache
Language
English
nav
asked 4 months ago190 views
1 Answer
1

Hello.

Are you using Redis?
In the case of Redis, if it is version 7 or later, it seems possible to change the settings and enable it even in an existing cluster.
For versions earlier than 7, I think you need to enable it when creating a cluster from a snapshot using the steps you described.
https://docs.aws.amazon.com/AmazonElastiCache/latest/red-ug/in-transit-encryption.html

Modifying the in-transit encryption setting, for an existing cluster, is supported on replication groups running Redis version 7 and later.

profile picture
EXPERT
Riku_Kobayashi
answered 4 months ago
  • Riku_Kobayashi EXPERT
    4 months ago

    I tried it in my environment. The image below is Redis 6.0.5. It cannot be changed for Redis 6.0.5. a
    The image below is Redis 7.1.0. In the case of Redis 7.1.0, editing is also possible on existing clusters. b

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content