- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
Hello.
The following document describes how to check if a restart occurs.
Run the AWS CLI and check if a reboot occurs.
If the value of "SupportsCertificateRotationWithoutRestart" is false, a restart will occur, so I think there will be downtime.
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.SSL-certificate-rotation.html#UsingWithRDS.SSL-certificate-rotation-considerations
Modify the DB instance or Multi-AZ DB cluster to change the CA from rds-ca-2019 to rds-ca-rsa2048-g1. To check if your database requires a restart to update the CA certificates, use the describe-db-engine-versions command and check the SupportsCertificateRotationWithoutRestart flag.
Although it is not SQLserver, when I updated the RDS MySQL certificate in the past, it was completed in about 30 seconds.(Changing the certificate took 30 seconds and the downtime was about 10 seconds.)
Maybe it was because we were using a multi-AZ configuration, but the downtime wasn't that long.
However, in the case of SQLserver, the situation may be different, so I recommend that you create a test environment and check it before executing it in the production environment.
I have done this 15 times recently for a client and MS SQL Server took about 5 - 10 mintues to complete but was Single AZ as we were upgrading from 2016 to 2022 before going back to Multi Az
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor 2 Jahren
- AWS OFFICIALAktualisiert vor 2 Jahren
- AWS OFFICIALAktualisiert vor 2 Jahren
- AWS OFFICIALAktualisiert vor 2 Jahren