Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

Why is the RDS Certificate authority default still the rds-ca-2019?

0

When provisioning an RDS instance with MariaDB through the AWS Console or CloudFormation, the default certificate authority is set to "rds-ca-2019". It's important to note that this certificate is set to expire on August 22nd, 2024. Prior to this expiration date, it will be necessary to initiate a reboot. If not done manually, AWS will automatically reboot the instance to apply a newer certificate. It raises the question: Why isn't a certificate with a longer validity period set as the default? This would eliminate the need for an additional reboot shortly after the RDS instance is created.

Themen
Datenbank
Tags
MariaDB
Sprache
English
Mokit
gefragt vor 8 Monaten966 Aufrufe
1 Antwort
0

You will have to set the accounts/regions default certificate using the following process for all new created instances going forward.

https://docs.aws.amazon.com/cli/latest/reference/rds/modify-certificates.html

When provisioning you can also define the SSL certificate during creation.

profile picture
EXPERTE
Gary Mclean
beantwortet vor 8 Monaten
profile pictureAWS
EXPERTE
Jose Guay
überprüft vor 8 Monaten

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt