Encryption at rest can be achieved on AWS with encrypted volumes with KMS keys
Configure KMS
From the AWS Console, go the the IAM Service, then select the left hand side menu Encryption Keys.
Create a new key with the following details:
- Alias: core-nex-uat or core-nex-prd
- Description: Encryption for Nex! volumes
- Key material origin: KMS
- Tags: environment => uat
- Key Admins: gapps-superadmin, gapps-poweruser
- Key usage: mcluster_dev, gapps-superadmin, gapps-poweruser