Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

Why is the RDS Certificate authority default still the rds-ca-2019?

0

When provisioning an RDS instance with MariaDB through the AWS Console or CloudFormation, the default certificate authority is set to "rds-ca-2019". It's important to note that this certificate is set to expire on August 22nd, 2024. Prior to this expiration date, it will be necessary to initiate a reboot. If not done manually, AWS will automatically reboot the instance to apply a newer certificate. It raises the question: Why isn't a certificate with a longer validity period set as the default? This would eliminate the need for an additional reboot shortly after the RDS instance is created.

Argomenti
Database
Tag
MariaDB
Lingua
English
Mokit
posta 8 mesi fa973 visualizzazioni
1 Risposta
0

You will have to set the accounts/regions default certificate using the following process for all new created instances going forward.

https://docs.aws.amazon.com/cli/latest/reference/rds/modify-certificates.html

When provisioning you can also define the SSL certificate during creation.

profile picture
ESPERTO
Gary Mclean
con risposta 8 mesi fa
profile pictureAWS
ESPERTO
Jose Guay
verificato 8 mesi fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente