Encrypting etcd data

This is not a mandatory requirement for IBM CCS installation but a security aspect to be understood to make your cluster more secure.

By default, etcd data is not encrypted in Kubernetes/OpenShift cluster. You can enable etcd encryption for your cluster to provide an additional layer of data security (data at rest). For example, it can help protect the loss of sensitive data if an etcd backup is exposed to the incorrect parties. For more information, refer Kubernetes and Red Hat OpenShift.