RDS Certificate Authority EOL

Question

Hi there, we have the following message on our RDS instances:

*You have 1 database with Certificate Authority RDS Certificate Authority (CA) 2019 that will reach end-of-life (EOL). Starting on August 22, 2024, RDS will automatically upgrade to Certificate Authority during an upcoming maintenance window. See RDS Certificate Authority (CA) 2019 .*

This message is not quite clear. Does this mean this new certificate will be automatically applied during our next maintenance window (this week), or does it mean that it will be applied in the next maintenance window AFTER August 22, 2024?

The schedule option under "Certificates" also seems to only allow us to schedule it for the next maintenance window and not select a future date.

So what I am trying to find out is if we make no change at this point, will this certificate be automatically applied to all our RDS instances in our next maintenance window which is this week, or will it be applied in a maintenance window AFTER August 22, 2024?

Accepted Answer

Hello.

I think you are referring to the maintenance period after August 22, 2024.

Maintenance windows run weekly.  
Therefore, if the certificate is automatically updated during maintenance before August 22, 2024, the certificate will have already been updated.  
https://repost.aws/knowledge-center/rds-redshift-maintenance-window  
> The maintenance window for Amazon RDS, Aurora, and Amazon Redshift occurs weekly. During this time, RDS DB instances can receive upgrades to the operating system (OS) or to the DB engine.

RDS Certificate Authority EOL

Relevant content