Terraform: Unable to create encrypted EBS on aws_instance
When creating an aws_instance, with an encrypted EBS, I get unexpected errors:
Error launching source instance: the encrypted flag cannot be specified since device /dev/sda1 has a snapshot specified. (InvalidBlockDeviceMapping)
No snapshot is specified, so the error does not make sense to me:
block_device = {
device_name = "/dev/sda1"
volume_type = "gp2"
volume_size = "15"
encrypted = true
delete_on_termination = true
}
Setting encrypted to false drops the error with terraform apply.
ketzacoatl
All 4 comments
@ketzacoatl You might be getting this error because it looks like you're referring to the root EBS volume and you're launching an EBS backed instance. These instances ALWAYS have a snapshot for the root volume. (Go ahead and launch a t2.micro, you'll see what I'm saying)
bkett
on 17 Mar 2015
Thanks @bkett, you would be correct - I needed to have two block_device maps, one for the root and one for the encrypted device.
ketzacoatl
on 18 Mar 2015
Is there no way to make the root an encrypted device?
BillBrower
on 18 Nov 2018
I'm going to lock this issue because it has been closed for _30 days_ โณ. This helps our maintainers find and focus on the active issues.
If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.
![hashibot[bot] picture](https://avatars2.githubusercontent.com/in/8332?v=4&s=40)
hashibot[bot]
on 31 Mar 2020
Related issues
rnowosielski
ยท
3Comments
rjinski
ยท
3Comments
shanmugakarna
ยท
3Comments
jrnt30
ยท
3Comments
zeninfinity
ยท
3Comments
Most helpful comment
Is there no way to make the root an encrypted device?