What's New @ Cloudera

Find the latest Cloudera product news
Announcements
Celebrating as our community reaches 100,000 members! Thank you!

Cloudera Operational Database (COD) supports instance group encryption in AWS environments

avatar
Rising Star

In CDP CLI, while creating an operational database, you can specify the encryption key to encrypt the volume for instance groups using the --volume-encryptions (array) option. You can select this option only in AWS environments.

Following is a sample command.

opdb create-database --environment-name <environment-name> --database-name <database-name> --disable-external-db --scale-type MICRO --attached-storage-for-workers '{"volumeCount":1,"volumeType":"SSD","volumeSize":100}' --endpoint-url http://localhost:8988 \


--volume-encryptions '[
{
"encryptionKey": "<aws-key-arn>",
"instanceGroup": "GATEWAY"
}
]'

Shorthand syntax:

encryptionKey=string,instanceGroup=string ... (separate items with spaces)

JSON syntax:

[
{
"encryptionKey": "string",
"instanceGroup": "WORKER"|"LEADER"|"MASTER"|"GATEWAY"|"STRONGMETA"|"EDGE"
}
...
]

For more information, see CDP CLI documentation.

This is available starting in COD v1.41 and you do not need to upgrade to a higher version of COD to benefit from this feature.

Try the Cloudera Operational Database for free with Test Drive (no cloud account or setup is needed).