github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/redshift/AVD-AWS-0084/Terraform.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/redshift/AVD-AWS-0084/Terraform.md (about)

     1  
     2  Enable encryption using CMK
     3  
     4  ```hcl
     5   resource "aws_kms_key" "redshift" {
     6   	enable_key_rotation = true
     7   }
     8   
     9   resource "aws_redshift_cluster" "good_example" {
    10     cluster_identifier = "tf-redshift-cluster"
    11     database_name      = "mydb"
    12     master_username    = "foo"
    13     master_password    = "Mustbe8characters"
    14     node_type          = "dc1.large"
    15     cluster_type       = "single-node"
    16     encrypted          = true
    17     kms_key_id         = aws_kms_key.redshift.key_id
    18   }
    19   
    20  ```
    21  
    22  #### Remediation Links
    23   - https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/redshift_cluster#encrypted
    24