Currently, it is not possible to update the encryption of an already attached volume on an EC2 instance**.**

In order not to compromise any of the volumes or data stored on your company's server and enable encryption, follow the following guidelines::

1. Access the EC2 Dashboard and then click on Volumes in the Elastic Block Stores section.

   

For the sake of curiosity, see that the volume is not encrypted:

Before generating an encrypted volume, we need to create a snapshot of our current volume (it is worth noting that this snapshot will not be encrypted now).

1. Select the volume that will be encrypted, and under Actions, click Create snapshot.

   

2. Add a description for the snapshot and click Create snapshot.

   

Com o snapshot criado, precisamos agora gerar o volume que será utilizado em nossa instância EC2 (vale destacar que agora esse volume será criptografado).

1. Go to the Snapshots tab and select what you created, then click on Actions and Create volume with snapshot.

1. In the Volume settings, make sure that the new volume is created in the same Availability Zone (AZ) as the instance. Select the Encrypt this volume checkbox and select a KMS key. After setting all these parameters, click Create volume.

   

See that the volume is now encrypted:

1. Now that we have the encrypted volume, we need to somehow attach it to our server, replacing our unencrypted volume. We can carry out this procedure in a very simple way: