Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Error creating an RDS Read replica when require_secure_transport is on

0

I have a MySQL RDS database that has TLS turned on via require_secure_transport. When I try to create a read replica off of it via the AWS console, it gets stuck at 'creating'

I connected to the database and ran 'show replica status' and saw

error connecting to master 'rdsrepladmin@###.###.###.###:3306' - retry-time: 60 retries: 1 message: Connections using insecure transport are prohibited while --require_secure_transport=ON.

is AWS not using TLS for replication? How do I get my replication to use TLS?

Temas
Migración y modernizaciónAnálisisBase de datosInternet de las cosas (IoT)
Etiquetas
Amazon Relational Database ServiceBase de datosSeguridad de capa de transporte (TLS)
Idioma
English
Dave B
preguntada hace un año227 visualizaciones
1 Respuesta
0

Check this official document! RDS MySQL supports a parameter for SSL that when set seems to be documented as being equivalent to MASTER_SSL=1, MASTER_SSL_VERIFY_SERVER_CERT=0.

ssl_encryption

A value that specifies whether Secure Socket Layer (SSL) encryption is used on the replication connection. 1 specifies to use SSL encryption, 0 specifies to not use encryption. The default is 0.

The MASTER_SSL_VERIFY_SERVER_CERT option isn't supported. This option is set to 0, which means that the connection is encrypted, but the certificates aren't verified.

profile picture
EXPERTO
posquit0
respondido hace un año
  • Dave B
    hace un año

    Hi there, that does look useful if I were trying to set up replication manually, but I don't think it applies. I'm attempting to create the replica via the AWS RDS UI Action 'Create Read Replica' I can't set that option there.

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante