This message is extracted from a ticket originally emailed to support@gruntwork.io. Names and URLs have been removed where appropriate.
Hi folks,
Now that AWS Elasticache supports encryption in transit and at rest. Any idea when your module will be updated to specify those options? Or how to do a work-a-round on the current module would be ok too.
Thanks!
We’d like to add support, but as far as I can tell, Terraform has not added support for this new setting yet: https://github.com/terraform-providers/terraform-provider-aws/issues/2087. Once this is merged, we can take a crack at it.
In the meantime, if you need it urgently, your only option is to do it via the UI. That means your Terraform code will be out of date for some time. Also, note that you can only enable encryption-at-rest for new clusters. If you have an existing cluster, you’ll have to migrate it to a new one to enable this, so it’s a non-trivial change.
PR that is ready to go, seems like any day:
https://github.com/terraform-providers/terraform-provider-aws/pull/2090
It has now been merged into master
https://github.com/terraform-providers/terraform-provider-aws/commit/f4800f6b58ea362e5b8caea4348563696737193b
https://github.com/terraform-providers/terraform-provider-aws/pull/2090#pullrequestreview-82543146
Yes, just saw that! I’m guessing it’ll be part of 0.11.2, at which point it’ll hopefully be a matter of exposing a couple new params 