All Products
Search
Document Center

Cloud Config:Enable TDE for Redis instances

Last Updated:Jun 16, 2026

Evaluates whether transparent data encryption (TDE) is enabled for ApsaraDB for Redis instances. An instance with TDE enabled is considered compliant.

Scenarios

Tair (Redis OSS-compatible) supports TDE, which automatically encrypts and decrypts Redis Database (RDB) data files to improve data security and meet compliance requirements.

Risk level

Default risk level: medium.

You can change the risk level based on your requirements.

Compliance evaluation logic

If TDE is enabled for a Redis instance, the instance is considered compliant.

Rule details

Parameter

Description

Rule name

Enable TDE for Redis instances

Rule identifier

redis-instance-enabled-tde

Automatic remediation

Not supported

Rule trigger

Periodic check every 24 hours

Supported resource types

ACS::Redis::DBInstance

Input parameters

None

Incompliance remediation

To enable TDE for a Redis instance, see Enable transparent data encryption (TDE).