How do I use Amazon SES to send email when my Amazon RDS for Microsoft SQL Server instance is in either a public or private subnet?

4 minute read

I want to use Amazon Simple Email Service (Amazon SES) to send email for an Amazon Relational Database Service (Amazon RDS) for Microsoft SQL Server instance that's hosted in either a private or public subnet.

Resolution

Set up Amazon SES

Use the Amazon SES console to get the Simple Mail Transfer Protocol (SMTP) credentials.

To receive a confirmation email, complete the following steps:

Open the Amazon SES console, and then choose Email Addresses.
Choose Verify a new email address, and then enter the email address where you want to receive a confirmation email.
Confirm that the Verification status is verified.

Set up a Database Mail parameter group

Note: If you already have a custom parameter group to use with Database Mail, then proceed to the Configure Database Mail section. If your parameter group is already associated with your RDS for SQL Server instance, then proceed to the next set of steps in this section.

To create a custom parameter group, complete the following steps:

Open the Amazon RDS console.
Choose Parameter groups, and then choose Create parameter group.
For Parameter group family, choose the SQL Server version and edition that you use. For example, SQL Server 2016 Enterprise Edition uses sqlserver-ee-13.0.
Enter a group name and description, and then choose Create.
On the Parameter groups page, choose the group.
Choose Edit parameters, and then select database mail xps.
For Values, choose 1.
Choose Save.

To associate the parameter group with your RDS for SQL Server instance, complete the following steps:

Open the Amazon RDS console.
Choose Database, and then choose Modify.
Under Database options, choose the parameter group, and then choose Continue.
Under Scheduling of modifications, choose Immediately.
Choose Modify DB Instance to apply the changes, and then reboot your instance.

Configure Database Mail

If your RDS for SQL Server instance is hosted in a public subnet, then you can configure the Database Mail.

If your instance is in a private subnet, then you might get the following error message when you configure Database Mail:

"The mail could not be sent to the recipients because of the mail server failure. Exception Message: Could not connect to mail server."

If you receive the preceding error message, then your DB instance can't reach the mail server. To resolve this issue, create an Amazon Virtual Private Cloud (Amazon VPC) endpoint for Amazon SES.

Complete the following steps:

Identify your instance's private IP address.
Create a new security group with an inbound rule to the security group that's associated with your instance:
For Type, choose Custom TCP.
For Port range, enter the port number that you want to use to send email. You can use 25, 465, 587, 2465, or 2587.
For Source type, choose Custom.
For Source, enter the private IP address of your RDS for SQL Server instance.
Create a VPC endpoint.
Choose the endpoint, and then note the first name under the DNS field.

Recreate the Database Mail account:

use msdbgo 
 
EXECUTE msdb.dbo.sysmail_add_account_sp 
@account_name = 'Acc1', 
@description = 'Mail account for sending outgoing
notifications.', 
@email_address = 'example@example.com', 
@display_name = 'Automated Mailer', 
@mailserver_name =
'vpce-0a9cxxxxxxxxxxxxx-xxxxxxxx.email-smtp.ap-southeast-2.vpce.amazonaws.com',
<---- VPC endpoint created in previous step
@port = 587,
@enable_ssl = 1,
@username = 'SMTP-username', <---- For user name and
password, please use the SES credentials
@password = 'SMTP-password' ;

Note: Replace @mailserver_name with the DNS name that you noted from the DNS field.

Run the following command to confirm that the Database Mail is correctly configured:

EXEC msdb.dbo.sp_send_dbmail @profile_name = 'Notifications', @recipients = 'success@simulator.amazonses.com',@body = 'The database mail configuration was completed successfully.',
@subject = 'Automated Success Message';

Note: If the Database Mail is correctly configured, then the email sends.

Run the following stored procedure to verify all email items:

SELECT * FROM msdb.dbo.sysmail_allitems

In the sent_status column, verify that the status is Sent.

Related information

Managing an Amazon RDS Custom for SQL Server DB instance

Using Database Mail on Amazon RDS for SQL Server

Topics

Database Migration & Modernization Analytics

Relevant content

Send Email using Amazon SES from PowerApps
Vishal_Arya
asked 2 years ago
Amazon Workmail & SES - how to setup an email address for sending only?
Accepted Answer
aps515466245
asked 5 years ago
Do I need to 'warm up' my email address when I plan on using amazon SES to send bulk email?
Viridios
asked 2 years ago
Sending email using Amazon Simple Email Service(Amazon SES) up to 40MB
Yaroslav Biziuk
asked 17 days ago
How to send email from AWS AppRunner using Amazon SES?
Accepted Answer
Remiby
asked a year ago
How do I view my email sending history in Amazon SES?
AWS OFFICIALUpdated 3 years ago
How do I use Amazon SES as the SMTP host to send emails from Amazon MWAA DAG tasks?
AWS OFFICIALUpdated 3 months ago
How do I send an email from my Amazon RDS for Oracle DB instance?
AWS OFFICIALUpdated a year ago
Why can't I send an SES email from an EC2 or Lambda instance that's inside a private Amazon VPC?
AWS OFFICIALUpdated 19 days ago
Announcement: Amazon RDS for SQL Server is ending support for Microsoft SQL Server 2014
EXPERT
appadman
published 2 years ago