检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
When SFSAccessKMS is displayed for Agency Name, the KMS access rights have been granted to SFS Capacity-Oriented, and SFS Capacity-Oriented can obtain KMS keys for encrypting or decrypting the file system.
After a KMS-encrypted object is replicated to the destination bucket, the key for encrypting the object copy changes to the default key obs/default of the destination region.
Encrypting a Plaintext Concatenate plaintext strings, which consist of a 16-byte random characters and a plaintext msg, and are separated by ampersands (&).
For details about automatic configuration, see Registering an Image File as a Private Image. cmk_id No String Specifies a custom key used for encrypting an image. For its value, see Viewing Key Details. tags No Array of strings Lists the image tags.
For details about automatic configuration, see Registering an Image File as a Private Image. cmk_id No String Specifies a custom key used for encrypting an image. For its value, see Viewing Key Details. tags No Array of strings Lists the image tags.
The authorized operations must at least contain Querying key details, Encrypting data, and Decrypting data. Specify whether to enable the IPv6 dual stack for the cluster. If this function is enabled, a client or application can connect to the database using an IPv6 address.
- Cryptographic Algorithm Algorithm used for encrypting and decrypting passwords in the cluster system. International: general cryptographic algorithm Chinese: SM series cryptographic algorithms are compatible with general cryptographic algorithms.
Definition: The key used for encrypting an object. Example: x-obs-server-side-encryption-customer-key:K7QkYpBkM5+hca27fsNkUnNVaobncnLht/rCB2o/9Cw= Constraints: This header is used only when SSE-C is used.
When you are performing operations in the function body related to password or key, such as creating a user, changing a password, encrypting or decrypting, the system catalog and log record plaintext information about the password or key.
When you are performing operations in the function body related to password or key, such as creating a user, changing a password, encrypting or decrypting, the system catalog and log record plaintext information about the password or key.
When you are performing operations in the function body related to password or key, such as creating a user, changing a password, encrypting or decrypting, the system catalog and log record plaintext information about the password or key.
Constraints If the metadata contains sensitive data, take appropriate measures to protect the sensitive data, for example, controlling access permissions and encrypting the data. Range A maximum of 10 key-value pairs can be injected.
Enabled by default, HTTPS improves security by encrypting all communication with the cluster. To use HTTP instead, deselect HTTPS Access. Data security cannot be guaranteed when HTTPS is disabled. Exercise caution.
Enabled by default, HTTPS improves security by encrypting all communication with the cluster. To use HTTP instead, deselect HTTPS Access. Data security cannot be guaranteed when HTTPS is disabled. Exercise caution.
Definition: The key used for encrypting an object. Example: x-obs-server-side-encryption-customer-key:K7QkYpBkM5+hca27fsNkUnNVaobncnLht/rCB2o/9Cw= Constraints: This header is used only when SSE-C is used. This header is a Base64-encoded 256-bit key.
Constraints If the metadata contains sensitive data, take appropriate measures to protect the sensitive data, for example, controlling access permissions and encrypting the data. Range A maximum of 10 key-value pairs can be injected.
Encrypting Images Image Management Service User Guide Set password later The password for logging in to the ECS is not configured during the ECS creation.
For example, the following identity policy only allows GaussDB(DWS)-initiated requests to call KMS APIs for encrypting data: { "Version": "5.0", "Statement": [{ "Effect": "Allow", "Action": [ "kms:cmk:encryptData" ], "Resource": [ "*" ], "Condition": { "ForAnyValue
Encryption Creating an Encrypted File System To use the file system encryption function, you need to authorize SFS Capacity-Oriented to access KMS when creating an SFS Capacity-Oriented file system. If you have the Security Administrator rights, grant SFS the permissions to access
Encryption Creating an Encrypted File System To use the file system encryption function, you can directly select the encryption function when creating an SFS Turbo file system. Authorization is not required. For details, see File System Encryption. You can create a file system that
