1 個回答
- 最新
- 最多得票
- 最多評論
0
Hi There
After the instance is running, modifying the KmsKeyId
parameter of the EBS
volume inside the BlockDeviceMapping
property results in instance replacement.
You cannot change the encryption key on an EBS volume. You need to take a snapshot and create new volumes with the new key See https://aws.amazon.com/premiumsupport/knowledge-center/ebs-change-encryption-key/
Can you clarify though, have you already changed the EBS encryption outside of CloudFormation?
相關內容
- 已提問 1 年前
- AWS 官方已更新 1 年前
- AWS 官方已更新 8 個月前
- AWS 官方已更新 2 年前
Hello, I've not updated teh KMS key yet, but will be following steps mentioned in this article and attach the new volumes to EC2 server, https://aws.amazon.com/premiumsupport/knowledge-center/ebs-change-encryption-key/
How can I avoid instance replacement.