From 3a30177fc94d7f1f558ea3e07f484e2986d80250 Mon Sep 17 00:00:00 2001
From: "mergify[bot]" <37929162+mergify[bot]@users.noreply.github.com>
Date: Mon, 24 Jul 2023 20:33:02 -0700
Subject: [PATCH] CNVM FAQ Updates 8.9 (#3579) (#3614)

* FAQ Updates 8.9

* Update docs/cloud-native-security/vuln-management-faq.asciidoc

(cherry picked from commit d19f8d7c0abcd86f1d78ce656ad5463a8fe20fe0)

Co-authored-by: Benjamin Ironside Goldstein <91905639+benironside@users.noreply.github.com>
---
 docs/cloud-native-security/vuln-management-faq.asciidoc | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/docs/cloud-native-security/vuln-management-faq.asciidoc b/docs/cloud-native-security/vuln-management-faq.asciidoc
index 389e702acd..3fa07c1d5a 100644
--- a/docs/cloud-native-security/vuln-management-faq.asciidoc
+++ b/docs/cloud-native-security/vuln-management-faq.asciidoc
@@ -33,7 +33,7 @@ Yes, CNVM scans all AWS EC2 instances in every scan cycle, including any created
 
 *Does CNVM scan AWS EC2 instances with encrypted volumes?*
 
-CNVM does not currently support scanning of encrypted volumes. This limitation will be addressed in future releases.
+Encrypted volumes can be scanned only if they were encrypted using Amazon's default EBS key.
 
 *Does CNVM prevent multiple installations in a single region?*
 
@@ -50,3 +50,7 @@ Yes, CNVM scans all EC2 instances, whether they are running or stopped, to ensur
 *What AWS permissions does the user require to run the CloudFormation template for CNVM onboarding?*
 
 To run the CloudFormation template for CNVM onboarding, you need an AWS user account with permissions to perform the following actions: run CloudFormation templates, create IAM Roles and InstanceProfiles, and create EC2 SecurityGroups and Instances.
+
+*Why do I get an error when I try to run the CloudFormation template?*
+
+It's possible you're using an unsupported region. Currently the `eu-north-1` and `af-south-1` regions are not supported because they don't provide the required instance types.