This is the new *Amazon CloudFormation Template Reference Guide*. Please update your bookmarks and links. For help getting started with CloudFormation, see the [Amazon CloudFormation User Guide](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/Welcome.html). # AWS::VerifiedPermissions::PolicyStore EncryptionSettings A structure that contains the encryption configuration for the policy store and child resources. This data type is used as a request parameter in the [CreatePolicyStore](https://docs.amazonaws.cn/verifiedpermissions/latest/apireference/API_CreatePolicyStore.html) operation. ## Syntax To declare this entity in your Amazon CloudFormation template, use the following syntax: ### JSON ``` { "[Default](#cfn-verifiedpermissions-policystore-encryptionsettings-default)" : {{Json}}, "[KmsEncryptionSettings](#cfn-verifiedpermissions-policystore-encryptionsettings-kmsencryptionsettings)" : {{KmsEncryptionSettings}} } ``` ### YAML ``` [Default](#cfn-verifiedpermissions-policystore-encryptionsettings-default): {{Json}} [KmsEncryptionSettings](#cfn-verifiedpermissions-policystore-encryptionsettings-kmsencryptionsettings): {{ KmsEncryptionSettings}} ``` ## Properties `Default` This is the default encryption setting. The policy store uses an Amazon owned key for encrypting data. *Required*: No *Type*: Json *Update requires*: [No interruption](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `KmsEncryptionSettings` The Amazon KMS encryption settings for this policy store to encrypt data with. It will contain the customer-managed KMS key, and a user-defined encryption context. *Required*: No *Type*: [KmsEncryptionSettings](aws-properties-verifiedpermissions-policystore-kmsencryptionsettings.md) *Update requires*: [No interruption](https://docs.amazonaws.cn/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt)