Readonly
enableIndicates whether AWS EBS volume have default encryption enabled.
Readonly
exclude(OPTIONAL) List of AWS Region names to be excluded from configuring AWS EBS volume default encryption
Readonly
kms(OPTIONAL) KMS key to encrypt EBS volume.
Note: When no value is provided Landing Zone Accelerator will create the KMS key.
Generated using TypeDoc
SecurityConfig / CentralSecurityServicesConfig / EbsDefaultVolumeEncryptionConfig
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-by-default | AWS EBS default encryption configuration Use this configuration to enable enforced encryption of new EBS volumes and snapshots created in an AWS environment.
Example