2 Answers
- Newest
- Most votes
- Most comments
1
Hi,
All the steps to complete for update of certificates is thoroughly described in this blog post: https://aws.amazon.com/blogs/aws/rotate-your-ssl-tls-certificates-now-amazon-rds-and-amazon-aurora-expire-in-2024/
Just follow it and you'll be all good!
Best,
Didier
0
Hi
Old RDS instance will remains with* Old SSL certificate***, Restarting an existing RDS instance, even after a shutdown, will not change its currently assigned SSL/TLS certificate.
- If your development/test RDS instances are using the rds-ca-2019 certificate, restarting them will keep the same certificate.
- Launching a new RDS instance from a snapshot of the old instance will also create a new instance with the same rds-ca-2019 certificate (assuming the snapshot captured the configuration).
Thanks for the comment, GK, but I find that when I take a snapshot and restore it, it is using the new certificate. It would be good to be able to recover a snapshot so that it has the current certificate as it will allow for creating a testing environment. How do I do this?
Relevant content
- asked 7 months ago
- asked 8 months ago
- Accepted Answerasked 7 months ago
- asked 9 months ago
- How do I resolve the storage full issue on my RDS for MySQL instance or my RDS for MariaDB instance?AWS OFFICIALUpdated 9 months ago
- AWS OFFICIALUpdated 9 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
Thanks for the comment, Didier. I have seen the blog, and believe the process of updating the cert will be straight forward, but dealing with a paranoid (and I mean that in a good sense) CTO who wants to ensure we can rollback to our current know working position if something goes pear shaped.