AWS::MediaConnect::FlowOutput Encryption - Amazon CloudFormation
SyntaxProperties
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

AWS::MediaConnect::FlowOutput Encryption

Information about the encryption of the flow.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON

{
  "Algorithm" : String,
  "KeyType" : String,
  "RoleArn" : String,
  "SecretArn" : String
}

YAML

  Algorithm: String
  KeyType: String
  RoleArn: String
  SecretArn: String

Properties

Algorithm

The type of algorithm that is used for static key encryption (such as aes128, aes192, or aes256). If you are using SPEKE or SRT-password encryption, this property must be left blank.

Required: No

Type: String

Allowed values: aes128 | aes192 | aes256

Update requires: No interruption

KeyType

The type of key that is used for the encryption. If you don't specify a keyType value, the service uses the default setting (static-key). Valid key types are: static-key, speke, and srt-password.

Required: No

Type: String

Allowed values: static-key | srt-password

Update requires: No interruption

RoleArn

The Amazon Resource Name (ARN) of the role that you created during setup (when you set up MediaConnect as a trusted entity).

Required: Yes

Type: String

Update requires: No interruption

SecretArn

The ARN of the secret that you created in Amazon Secrets Manager to store the encryption key.

Required: Yes

Type: String

Update requires: No interruption