aliyun-cli create encrypted system disk

Question

aliyun-cli create encrypted system disk

tolikkk opened this issue 2 years ago · 4 comments

aliyun-cli version 3.0.149

Need to create ECS instance with encrypted system disk. Default service CMK is suitable for my purposes.

There is only the DataDisk encryption is described in API reference for CreateInstance operation. The same options for SystemDisk are not available.
https://www.alibabacloud.com/help/en/elastic-compute-service/latest/createinstance

  --DataDisk.n.EncryptAlgorithm      String  Optional
  --DataDisk.n.Encrypted             Boolean Optional

How can I encrypt a system disk using ECS API?

Answer 1 · 2023-02-20T01:50:51.000Z

Add --force at the end of the command.

Answer 2 · 2023-03-02T09:35:47.000Z

@TsinghuaDream, thers is no such option "--force" in CreateInstance options:
https://www.alibabacloud.com/help/en/elastic-compute-service/latest/createinstance

Can you show the full command example?

Answer 3 · 2023-03-02T09:46:45.000Z

aliyun ecs CreateInstance --{parameterName} {parameterValue} ... --force
you can use aliyun --help find --force option.

Answer 4 · 2023-03-02T10:04:04.000Z

@TsinghuaDream, I used the following command with "force", still no success - created system disk is not encrypted.

aliyun ecs CreateInstance \
    --InstanceName test-host-1 \
    --HostName ali-test-13 \
    --ImageId ubuntu_22_04_x64_20G_alibase_20230208.vhd \
    --InstanceType ecs.c7.large \
    --SystemDisk.Category cloud_essd \
    --SystemDisk.PerformanceLevel PL0 \
    --SystemDisk.Size 40 \
    --SecurityGroupId sg-*** \
    --VSwitchId vsw-*** \
    --InternetChargeType PayByTraffic \
    --Tag.1.Key team \
    --Tag.1.Value test \
    --Tag.2.Key env \
    --Tag.2.Value dev \
    --Password *** \
    --force