1 Answer
- Newest
- Most votes
- Most comments
1
Hi Nathan,
DataSync recently released support for EFS TLS 1.2 and utilizing IAM roles for DataSync within EFS file system policies. Now, when creating your EFS location you can specify TLS 1.2 and optionally specify an IAM role as part of the location to be used as a principal inside an EFS file system policy.
The DataSync docs have details on how to accomplish this. https://docs.aws.amazon.com/datasync/latest/userguide/create-efs-location.html
answered 3 years ago
Relevant content
- asked 9 months ago
- asked 2 years ago
- asked 10 months ago
AWS OFFICIALUpdated a year ago- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 4 years ago
- AWS OFFICIALUpdated 2 years ago
Can you please elaborate? Where is the policy being set? Are you introducing encryption in transit in 1, 2 or 3 as per the diagram in https://docs.aws.amazon.com/datasync/latest/userguide/encryption-in-transit.html?
Our data is on an EFS drive. That diagram relates to data sitting on on-prem servers, so it is not clear how it applies to the situation in question. The policy was created through the website by checking the "Enforce in-transit encryption for all clients" box on the "File System Policy" tab for the EFS drive in question.