AWS re:Post을(를) 사용하면 다음에 동의하게 됩니다. AWS re:Post 이용 약관
AWS re:Postre:Post

Error creating an RDS Read replica when require_secure_transport is on

0

I have a MySQL RDS database that has TLS turned on via require_secure_transport. When I try to create a read replica off of it via the AWS console, it gets stuck at 'creating'

I connected to the database and ran 'show replica status' and saw

error connecting to master 'rdsrepladmin@###.###.###.###:3306' - retry-time: 60 retries: 1 message: Connections using insecure transport are prohibited while --require_secure_transport=ON.

is AWS not using TLS for replication? How do I get my replication to use TLS?

주제
마이그레이션 및 현대화분석데이터베이스사물 인터넷(IoT)
태그
아마존 Relational Database Service데이터베이스전송 계층 보안(TLS)
언어
English
Dave B
질문됨 일 년 전227회 조회
1개 답변
0

Check this official document! RDS MySQL supports a parameter for SSL that when set seems to be documented as being equivalent to MASTER_SSL=1, MASTER_SSL_VERIFY_SERVER_CERT=0.

ssl_encryption

A value that specifies whether Secure Socket Layer (SSL) encryption is used on the replication connection. 1 specifies to use SSL encryption, 0 specifies to not use encryption. The default is 0.

The MASTER_SSL_VERIFY_SERVER_CERT option isn't supported. This option is set to 0, which means that the connection is encrypted, but the certificates aren't verified.

profile picture
전문가
posquit0
답변함 일 년 전
  • Dave B
    일 년 전

    Hi there, that does look useful if I were trying to set up replication manually, but I don't think it applies. I'm attempting to create the replica via the AWS RDS UI Action 'Create Read Replica' I can't set that option there.

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠