Elasticsearch domain should enable encryption

이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Implement encryption at rest for your Amazon Elasticsearch (ES) domain with the AWS KMS service.

Implementing encryption at rest protects your domain from unauthorized access and ensures security and compliance requirements are met.

Follow the Enabling Encryption of Data at Rest docs to learn how to implement encryption for your domain.

Run describe-elasticsearch-domain with your ES domain to return configuration metadata.
```
aws es describe-elasticsearch-domain
    --domain-name your-es-domain
```
Run create-elasticsearch-domain with your domain name and encryption-at-rest-options. Use the metadata returned in the previous step to create and relaunch your ES domain to enable at-rest encryption.
```
aws es create-elasticsearch-domain
    --domain-name your-es-domain
    ...
    --encryption-at-rest-options Enabled=true,KmsKeyId="abcdabcd-aaaa-bbbb-cccc-abcdabcdabcd"
```