1 Answer
0
Accepted Answer
If you don't want to go the route of taking snapshot, encrypting it and then restoring it, the only option left is to do replication to an encrypted RDS, either using DMS or by setting up binlog replication (in case of MySQL) or WAL replication (using pglogical) in case of PostgreSQL. You could set up a new set of instances that are encrypted, and then use logical database replication to copy the data over, and then cut over to the new instances once replication lag is 0. DMS isn't really needed if you are transferring data from MySQL to MySQL or PostgreSQL to PostgreSQL.
https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/AuroraMySQL.Replication.MySQL.html
Relevant questions
Enable RDS Encryption with minimal downtime after creation
Accepted Answerasked 2 years agoAdd encryption to a multi-az cluster db snapshot?
asked 2 months agoRDS Encryption questions
Accepted Answerasked 4 years agoEnable `mysqlx` plugin on RDS
asked a month agoStreaming Replication in postgres between local server and Amazon RDS
asked 5 days agoMandate user to enable encryption while Sagemaker notebook creation?
asked 2 months agoCan I import an RDS uncrypted mysql snapshot to an RDS encrypted mysql?
Accepted Answerasked 6 months agodata encryption-at-rest in RDS vs S3
asked 2 months agoPerformance Insights and MySQL 5.7.22
Accepted Answerasked 3 years agoJDBC and RDS PostgreSQL TLS Encryption connection problem
asked 3 months ago