Open kyarosh opened 2 years ago
(Similar to issue #183)
F27 ("RDS DBInstance should have StorageEncrypted enabled") is flagged on RDS instances where encryption is not explicitly enabled.
RDS DBInstance should have StorageEncrypted enabled
However, according to the CloudFormation documentation for RDS, encryption properties should not be specified for RDS read replicas:
If you specify the SnapshotIdentifier or SourceDBInstanceIdentifier property, don't specify this property. The value is inherited from the snapshot or source DB instance, and if the DB instance is encrypted, the specified KmsKeyId property is used.
SnapshotIdentifier
SourceDBInstanceIdentifier
(Similar to issue #183)
F27 ("
RDS DBInstance should have StorageEncrypted enabled") is flagged on RDS instances where encryption is not explicitly enabled.However, according to the CloudFormation documentation for RDS, encryption properties should not be specified for RDS read replicas: