AWS::EMR::SecurityConfiguration - Amazon CloudFormation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).


Use a SecurityConfiguration resource to configure data encryption, Kerberos authentication (available in Amazon EMR release version 5.10.0 and later), and Amazon S3 authorization for EMRFS (available in EMR 5.10.0 and later). You can re-use a security configuration for any number of clusters in your account. For more information and example security configuration JSON objects, see Create a Security Configuration in the Amazon EMR Management Guide.


To declare this entity in your Amazon CloudFormation template, use the following syntax:


{ "Type" : "AWS::EMR::SecurityConfiguration", "Properties" : { "Name" : String, "SecurityConfiguration" : Json } }


Type: AWS::EMR::SecurityConfiguration Properties: Name: String SecurityConfiguration: Json



The name of the security configuration.

Required: No

Type: String

Pattern: [\u0020-\uD7FF\uE000-\uFFFD\uD800\uDC00-\uDBFF\uDFFF\r\n\t]*

Minimum: 0

Maximum: 10280

Update requires: Replacement


The security configuration details in JSON format.

Required: Yes

Type: Json

Update requires: Replacement

Return values


When you pass the logical ID of this resource to the intrinsic Ref function, Ref returns the security configuration name, such as mySecurityConfiguration.

For more information about using the Ref function, see Ref.