Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Why is the RDS Certificate authority default still the rds-ca-2019?

0

When provisioning an RDS instance with MariaDB through the AWS Console or CloudFormation, the default certificate authority is set to "rds-ca-2019". It's important to note that this certificate is set to expire on August 22nd, 2024. Prior to this expiration date, it will be necessary to initiate a reboot. If not done manually, AWS will automatically reboot the instance to apply a newer certificate. It raises the question: Why isn't a certificate with a longer validity period set as the default? This would eliminate the need for an additional reboot shortly after the RDS instance is created.

Temas
Base de datos
Etiquetas
MariaDB
Idioma
English
Mokit
preguntada hace 8 meses965 visualizaciones
1 Respuesta
0

You will have to set the accounts/regions default certificate using the following process for all new created instances going forward.

https://docs.aws.amazon.com/cli/latest/reference/rds/modify-certificates.html

When provisioning you can also define the SSL certificate during creation.

profile picture
EXPERTO
Gary Mclean
respondido hace 8 meses
profile pictureAWS
EXPERTO
Jose Guay
revisado hace 8 meses

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante