All Products
Search

This Product

    Cloud Config:Enable sensitive data protection for a database instance

    Document Center

    Cloud Config:Enable sensitive data protection for a database instance

    Last Updated:Oct 20, 2025

    A database instance is considered compliant if sensitive data protection is enabled.

    Threat level

    Default threat level: Medium.

    You can change the risk level as needed.

    Detection logic

    • A database instance is considered compliant if sensitive data protection is enabled.

    Rule details

    Parameter

    Description

    Rule name

    Enable sensitive data protection for a database instance

    Rule identifier

    dms-instance-sensitive-data-protection-enable

    Tags

    RDS, Instance

    Automatic remediation

    Not supported

    Rule trigger

    Configuration change

    Supported resource types

    ACS::DMSEnterprise::Instance

    Input parameters

    None