AWS::MediaConnect::FlowOutput Encryption - Amazon CloudFormation
SyntaxProperties
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

This is the new Amazon CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the Amazon CloudFormation User Guide.

AWS::MediaConnect::FlowOutput Encryption

Information about the encryption of the flow.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON

{
  "Algorithm" : String,
  "KeyType" : String,
  "RoleArn" : String,
  "SecretArn" : String
}

YAML

  Algorithm: String
  KeyType: String
  RoleArn: String
  SecretArn: String

Properties

Algorithm

The type of algorithm that is used for static key encryption (such as aes128, aes192, or aes256). If you are using SPEKE or SRT-password encryption, this property must be left blank.

Required: No

Type: String

Allowed values: aes128 | aes192 | aes256

Update requires: No interruption

KeyType

The type of key that is used for the encryption. If you don't specify a keyType value, the service uses the default setting (static-key). Valid key types are: static-key, speke, and srt-password.

Required: No

Type: String

Allowed values: static-key | srt-password

Update requires: No interruption

RoleArn

The ARN of the role that you created during setup (when you set up MediaConnect as a trusted entity).

Required: Yes

Type: String

Update requires: No interruption

SecretArn

The ARN of the secret that you created in Amazon Secrets Manager to store the encryption key. This parameter is required for static key encryption and is not valid for SPEKE encryption.

Required: Yes

Type: String

Update requires: No interruption