AWS::Glue::DataCatalogEncryptionSettings EncryptionAtRest

Specifies the encryption-at-rest configuration for the Data Catalog.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:


{
  "CatalogEncryptionMode" : String,
  "CatalogEncryptionServiceRole" : String,
  "SseAwsKmsKeyId" : String
}


  CatalogEncryptionMode: String
  CatalogEncryptionServiceRole: String
  SseAwsKmsKeyId: String

CatalogEncryptionMode

The encryption-at-rest mode for encrypting Data Catalog data.

Required: No

Type: String

Allowed values: DISABLED | SSE-KMS | SSE-KMS-WITH-SERVICE-ROLE

Update requires: No interruption

CatalogEncryptionServiceRole

The role that AWS Glue assumes to encrypt and decrypt the Data Catalog objects on the caller's behalf.

Required: No

Type: String

Pattern: ^arn:aws(-(cn|us-gov|iso(-[bef])?))?:iam::[0-9]{12}:role/.+

Update requires: No interruption

SseAwsKmsKeyId

The ID of the AWS KMS key to use for encryption at rest.

Required: No

Type: String

Pattern: [\u0020-\uD7FF\uE000-\uFFFD\uD800\uDC00-\uDBFF\uDFFF\t]*

Minimum: 1

Maximum: 255

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

DataCatalogEncryptionSettings

AWS::Glue::DataQualityRuleset