Control: EBS snapshots should be encrypted
Description
Ensure that EBS snapshots are encrypted. This rule is non-compliant if the EBS snapshot is not encrypted.
Usage
Run the control in your terminal:
powerpipe control run aws_compliance.control.ebs_snapshot_encryption_enabledSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.ebs_snapshot_encryption_enabled --shareSQL
This control uses a named query:
select arn as resource, case when encrypted then 'ok' else 'alarm' end as status, case when encrypted then title || ' encryption enabled.' else title || ' encryption disabled.' end as reason , region, account_idfrom aws_ebs_snapshot;