By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

"An internal error has occurred" when attaching Directory Service to RDS in the Zurich region (eu-central-2).

0

Hi everyone, When I try to create SQL server RDS with Microsoft SQL Server Windows Authentication setting: SettingDirectoryInRDS I receive the error below: Error when create RDS

When I look at Directory Service in eu-central-2, I also see 3 application and services avaiable for Directory: Directory_app_eu-central-2

Compare with eu-central-1, it seems to lack "Amazon RDS for SQL Server". Directory_app_eu-central-1

I also attached the log when I try to attach Directory Service to the RDS instance in eu-central-2 region using the next command:

aws --profile <info> --region eu-central-2 rds modify-db-instance \
   --db-instance-identifier <info>  \
   --domain <d-c...info> \
   --domain-iam-role-name rds-directoryservice-access-role \
  --apply-immediately

The log content:

2023-07-11 10:49:02,066 - MainThread - botocore.httpsession - DEBUG - Certificate path: /usr/local/aws-cli/v2/2.12.3/dist/awscli/botocore/cacert.pem
2023-07-11 10:49:02,066 - MainThread - urllib3.connectionpool - DEBUG - Resetting dropped connection: rds.eu-central-2.amazonaws.com
2023-07-11 10:49:02,868 - MainThread - urllib3.connectionpool - DEBUG - https://rds.eu-central-2.amazonaws.com:443 "POST / HTTP/1.1" 500 324
2023-07-11 10:49:02,868 - MainThread - botocore.parsers - DEBUG - Response headers: {'x-amzn-RequestId': 'd0388f19-aa75-4c2b-adfa-0c9927c50b64', 'Strict-Transport-Security': 'max-age=31536000', 'Content-Type': 'text/xml', 'Content-Length': '324', 'Date': 'Tue, 11 Jul 2023 07:49:01 GMT', 'Connection': 'close'}
2023-07-11 10:49:02,869 - MainThread - botocore.parsers - DEBUG - Response body:
b'<ErrorResponse xmlns="http://rds.amazonaws.com/doc/2014-10-31/">\n  <Error>\n    <Type>Receiver</Type>\n    <Code>InternalFailure</Code>\n    <Message>An internal error has occurred. Please try your query again at a later time.</Message>\n  </Error>\n  <RequestId>d0388f19-aa75-4c2b-adfa-0c9927c50b64</RequestId>\n</ErrorResponse>\n'
2023-07-11 10:49:02,869 - MainThread - botocore.hooks - DEBUG - Event needs-retry.rds.ModifyDBInstance: calling handler <bound method RetryHandler.needs_retry of <botocore.retries.standard.RetryHandler object at 0x7fc1ed91f790>>
2023-07-11 10:49:02,869 - MainThread - botocore.retries.standard - DEBUG - Max attempts of 3 reached.
2023-07-11 10:49:02,870 - MainThread - botocore.retries.standard - DEBUG - Not retrying request.
2023-07-11 10:49:02,870 - MainThread - botocore.hooks - DEBUG - Event after-call.rds.ModifyDBInstance: calling handler <bound method RetryQuotaChecker.release_retry_quota of <botocore.retries.standard.RetryQuotaChecker object at 0x7fc1ed91f150>>
2023-07-11 10:49:02,873 - MainThread - awscli.clidriver - DEBUG - Exception caught in main()
Traceback (most recent call last):
  File "awscli/clidriver.py", line 460, in main
  File "awscli/clidriver.py", line 595, in __call__
  File "awscli/clidriver.py", line 798, in __call__
  File "awscli/clidriver.py", line 929, in invoke
  File "awscli/clidriver.py", line 941, in _make_client_call
  File "awscli/botocore/client.py", line 341, in _api_call
  File "awscli/botocore/client.py", line 697, in _make_api_call
botocore.exceptions.ClientError: An error occurred (InternalFailure) when calling the ModifyDBInstance operation (reached max retries: 2): An internal error has occurred. Please try your query again at a later time.

An error occurred (InternalFailure) when calling the ModifyDBInstance operation (reached max retries: 2): An internal error has occurred. Please try your query again at a later time.

Is there anything I can do to make it work?

Topics
DatabaseMigration & ModernizationAnalyticsSecurity, Identity, & Compliance
Tags
Microsoft SQL ServerAmazon Relational Database ServiceAWS Directory ServiceRDS Custom for SQL Server
Language
English
Steve
asked 10 months ago421 views
1 Answer
1
Accepted Answer

Hi Steve,

As you clearly spotted it, it seems that the integration directory service <> RDS is not active in your account currently.

So,

  1. You should probably open a support ticket to confirm or not the absence of this integration for Zurich region. It may be a glitch in your account.
  2. If really urgent, I would personally try to integrate RDS with a private AD instance like in https://aws.amazon.com/blogs/database/use-a-self-hosted-active-directory-with-amazon-rds-custom-for-sql-server/ and then replicate ethe ntries that you need between your private AD instance and AWS Directory service. Then, those entries that you replicated from AWS DS should become visible for your RDS instance via the private AD. (I know that it looks cumbersome but it may allow you to achieve what you need until the integration of DS with RDS works if you cannot wait)

Best,

Didier

profile pictureAWS
EXPERT
Didier_Durand
answered 10 months ago
  • Steve
    10 months ago

    Thank you for your help. I will create support ticket first for checking.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content