Skip to main content

GPDB Instance Disk Encryption Enabled

ID: rule:aliyun:gpdb-instance-disk-encryption-enabled
Severity: high
IaC Types: ROS, Terraform

Description

GPDB instances should have disk encryption enabled using KMS encryption key.

Reason for Violation

The GPDB instance does not have disk encryption enabled.

Recommendation

Enable disk encryption by specifying the encryption_key attribute with a valid KMS key ID.

Resource Types

  • ROS: ALIYUN::GPDB::DBInstance
  • Terraform: alicloud_gpdb_instance