In CDP CLI, while creating an operational database, you can specify the encryption key to encrypt the volume for instance groups using the --volume-encryptions (array) option. You can select this option only in AWS environments.
Following is a sample command.
opdb create-database --environment-name <environment-name> --database-name <database-name> --disable-external-db --scale-type MICRO --attached-storage-for-workers '{"volumeCount":1,"volumeType":"SSD","volumeSize":100}' --endpoint-url http://localhost:8988 \
--volume-encryptions '[
{
"encryptionKey": "<aws-key-arn>",
"instanceGroup": "GATEWAY"
}
]'Shorthand syntax:
encryptionKey=string,instanceGroup=string ... (separate items with spaces)
JSON syntax:
[
{
"encryptionKey": "string",
"instanceGroup": "WORKER"|"LEADER"|"MASTER"|"GATEWAY"|"STRONGMETA"|"EDGE"
}
...
]
For more information, see CDP CLI documentation.
This is available starting in COD v1.41 and you do not need to upgrade to a higher version of COD to benefit from this feature.
Try the Cloudera Operational Database for free with Test Drive (no cloud account or setup is needed).
