This is the new AWS CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.
AWS::S3::Bucket MetadataTableEncryptionConfiguration
The encryption settings for an S3 Metadata journal table or inventory table configuration.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "KmsKeyArn" :String, "SseAlgorithm" :String}
YAML
KmsKeyArn:StringSseAlgorithm:String
Properties
KmsKeyArn-
If server-side encryption with AWS Key Management Service (AWS KMS) keys (SSE-KMS) is specified, you must also specify the KMS key Amazon Resource Name (ARN). You must specify a customer-managed KMS key that's located in the same Region as the general purpose bucket that corresponds to the metadata table configuration.
Required: No
Type: String
Update requires: No interruption
SseAlgorithm-
The encryption type specified for a metadata table. To specify server-side encryption with AWS Key Management Service (AWS KMS) keys (SSE-KMS), use the
aws:kmsvalue. To specify server-side encryption with Amazon S3 managed keys (SSE-S3), use theAES256value.Required: Yes
Type: String
Allowed values:
aws:kms | AES256Update requires: No interruption
