Workspace user volumes are not encrypted

Home
»
AWS Documentation
»
General
»
Workspace user volumes are not encrypted

Workspace user volumes are not encrypted

Description

Encrypting your Workspace user volumes helps protect your data from unauthorized access or tampering. That way, you can ensure that only authorized users can access and modify the contents of your volumes. Such action can help protect against external threats such as hackers or malware, as well as internal threats such as accidental or unauthorized access.

Fix - Buildtime

Terraform

Resource: aws_workspaces_workspace
Argument: user_volume_encryption_enabled, volume_encryption_key

` ` `go aws_s3_bucket.test.tf resource “aws_workspaces_workspace” “pass” { … + user_volume_encryption_enabled = true + volume_encryption_key = var.volume_encryption_key … }

## CloudFormation

– **Resource**: AWS::WorkSpaces::Workspace

– **Argument**: Properties.UserVolumeEncryptionEnabled

` ` `yaml

Type: AWS::WorkSpaces::Workspace

Properties:

…

+ UserVolumeEncryptionEnabled: true