How enable EBS encryption with AWS ECS
I'm trying to set up an ECS cluster with EC2 instance type. My requirement is to encrypt the EBS volumes used by the ECS cluster. But, I couldn't see an option to select encrypted EBS during the ECS cluster creation. What I'm only seeing is an option to provide EBS volume size under instance configuration:
Is there any other way to implement EBS encryption in an ECS cluster?
Instead of creating instances using the ECS console, you can create an them using EC2 console/CLI/CloudFormation/etc and join the created instances to the ECS cluster. That way you have full control of the instance options and contents, including specifying EBS encryption.
You will need to use an Amazon ECS optimised AMI to launch the instances, and you can join the cluster by adding the following to UserData:
#!/bin/bash
echo ECS_CLUSTER=your_cluster_name >> /etc/ecs/ecs.config
Full details here: https://docs.aws.amazon.com/AmazonECS/latest/developerguide/launch_container_instance.html