Encryption status of cross-account snapshot copies
The following table provides information about the different scenarios that can occur when snapshots are encrypted and copied from one AWS account to another AWS account in Cloud Snapshot Manager.
| Source Account | Target Account | Result |
|---|---|---|
| Snapshot is not encrypted. | Encryption key is not configured. | If the source snapshot is not encrypted, the resulting copy of the snapshot is also not encrypted. |
| Snapshot is not encrypted. | Encryption key is configured. | If the source snapshot is not encrypted, the resulting copy of the snapshot is encrypted with the encryption key configured for the target account. |
| Snapshot is encrypted with the default AWS key. | Encryption key may or may not be configured. | If the source snapshot is encrypted with the default AWS key, CSM displays an error message. |
| Snapshot is encrypted with the custom-defined encryption key(CMK). | Encryption key is not configured. | CSM displays an error message. |
| The snapshot is encrypted using the custom-defined encryption key (CMK), which is not shared with the target account. | Encryption key is configured. | CSM displays an error message. |
| The snapshot is encrypted using the custom-defined encryption key (CMK), which is shared with the target account. | Encryption key is configured. | If the source snapshot is encrypted, the resulting copy of the snapshot is also encrypted with the encryption key configured for the target account. |