Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

Error creating an RDS Read replica when require_secure_transport is on

0

I have a MySQL RDS database that has TLS turned on via require_secure_transport. When I try to create a read replica off of it via the AWS console, it gets stuck at 'creating'

I connected to the database and ran 'show replica status' and saw

error connecting to master 'rdsrepladmin@###.###.###.###:3306' - retry-time: 60 retries: 1 message: Connections using insecure transport are prohibited while --require_secure_transport=ON.

is AWS not using TLS for replication? How do I get my replication to use TLS?

Argomenti
Migrazione e modernizzazioneAnalisiDatabaseInternet delle cose (IoT)
Tag
Amazon Relational Database ServiceDatabaseTransport Layer Security (TLS)
Lingua
English
Dave B
posta un anno fa227 visualizzazioni
1 Risposta
0

Check this official document! RDS MySQL supports a parameter for SSL that when set seems to be documented as being equivalent to MASTER_SSL=1, MASTER_SSL_VERIFY_SERVER_CERT=0.

ssl_encryption

A value that specifies whether Secure Socket Layer (SSL) encryption is used on the replication connection. 1 specifies to use SSL encryption, 0 specifies to not use encryption. The default is 0.

The MASTER_SSL_VERIFY_SERVER_CERT option isn't supported. This option is set to 0, which means that the connection is encrypted, but the certificates aren't verified.

profile picture
ESPERTO
posquit0
con risposta un anno fa
  • Dave B
    un anno fa

    Hi there, that does look useful if I were trying to set up replication manually, but I don't think it applies. I'm attempting to create the replica via the AWS RDS UI Action 'Create Read Replica' I can't set that option there.

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente