AWS FSX Windows filesystem not encrypted using Customer Managed Key

Description

This is a simple check to ensure that FSX Windows file system is using AWS key management - KMS to encrypt its contents. To resolve add the ARN of your KMS or link on creation of the cluster

Code Example

resource "aws_fsx_windows_file_system" "example" {
  active_directory_id = aws_directory_service_directory.example.id
  kms_key_id          = aws_kms_key.example.arn
  storage_capacity    = 300
  subnet_ids          = [aws_subnet.example.id]
  throughput_capacity = 1024
}

Remediation

Terraform

Resource: aws_fsx_windows_file_system
Attribute: kms_key_id

Rule Details

Field	Value
ID	IAC-0228
Severity	LOW
IaC Type	Terraform
Frameworks	Terraform, TerraformPlan
Checkov ID	CKV_AWS_179

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

AWS FSX Windows filesystem not encrypted using Customer Managed Key

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

AWS FSX Windows filesystem not encrypted using Customer Managed Key ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

AWS FSX Windows filesystem not encrypted using Customer Managed Key

Description

Code Example

Remediation

Rule Details

References