I was reading about HDFS encryption at rest and found that when we create a encryption zone in hdfs , folder should be empty or should not be present.
Is there any way in which i can convert existing folders into encryption zone which are already having some folders/data into it ?
Note : I am using Ranger KMS as key management server.
Hi @Shashi Vish I'm afraid you can't encrypt a directory which already contains data because of the way the encryption mechanism works. Files are encrypted when written into the dir, so it doesn't work if they are already there.
You could always move the data out to a temporary dir, encrypt your old one and then move them back in.