How to enable encryption for all S3 buckets

January 30, 2022January 30, 2022 admin

Encryption for S3 bucket can be enabled from the AWS console itself. But if the number of buckets are more, its difficult to do this manually.

This article explains one Python script to enable encryption for all S3 buckets.

import boto3
from botocore.exceptions import ClientError


client = boto3.client(
    's3',
    region_name=' ',
    aws_access_key_id=' ',
    aws_secret_access_key=' '
)


response = client.list_buckets()
SSECNF = 'ServerSideEncryptionConfigurationNotFoundError'
for bucket in response['Buckets']:
try:
    bucket = client.get_bucket_encryption(Bucket=bucket['Name'])
except client.exceptions.ClientError as e:
    if e.response['Error']['Code'] == SSECNF:
        client.put_bucket_encryption(Bucket=bucket['Name'],
        ServerSideEncryptionConfiguration={
        'Rules': [
        {
            'ApplyServerSideEncryptionByDefault': {
                'SSEAlgorithm': 'AES256'
            }
        },
        ]
        })
    else:
        print("Unexpected error: %s" % e)

Here the value of region_name, aws_access_key_id and aws_secret_access_key are need to be updated with corresponding values.

That's all…

M	T	W	T	F	S	S
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.