How to Migrate RDS

  • Can share encrypted/decrypted to other accounts
  • Cannot share encrypted snapshots with AWS default generated keys
  • When sharing, need to provide the encrypted key together
  1. To Access the snapshot!! You need to share AWS CMK keys to the account
    https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_ShareSnapshot.html#USER_ShareSnapshot.Encrypted.KeyPolicy
  • CHANGE KEY POLICY
  • only touch the ‘allow key access’ & ‘allow persistent ….’ part
  • CHANGE IAM POLICY
  • Create a custom policy and copy paste it in your IAM (find it in the docs)

--

--

--

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Asymmetric Cryptography in 4 minutes 🔒

Lernaean Hydra: Cracking Passwords

Purchase Crypto On Gate.io Using Fiat Currency

ChangeNOW Solution For User’s Security

What is Adaptive Authentication or Risk-based Authentication?

Windows Session 0 Isolation & Covenant Integrity

{UPDATE} Grim Facade: Monster in Disguise - Hidden Objects Hack Free Resources Generator

Azure Data Lake Storage Gen2 Security — an Overview

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
June Chung

June Chung

More from Medium

Evaluation techniques for interactive systems

Thinking Visually — Empowering Learners Using Visual Organizers

Importance of Sports and Games

IoT Technology Stack —Part 01 : Devices

https://cdn-images-1.medium.com/max/1600/0*28OVAnmcc9TotI8G.jpg