varmab
commented
4 years ago I changed the certificate and rebooted RDS. All seems work fine after certificate update.
Open leematsunami opened 4 years ago
varmab
commented
4 years ago I changed the certificate and rebooted RDS. All seems work fine after certificate update.
mangamojad
commented
4 years ago Confirmed this is completed by reviewing the console and seeing the new certificate
Varma - this is now our top priority, which much be fixed before 3/5.
Here is the information provided by AWS:
You are receiving this message because you have one or more Amazon RDS database instances (as of February 24, 2020) that require attention in the US-EAST-1 Region. For these instances, you still need to update your Amazon RDS CA certificate before the old certificate expires on March 5, 2020. See the 'Affected resources' tab in your Personal Health Dashboard for a list of instances.
The current CA expires on March 5, 2020, requiring updates to all client applications and database instances that connect using Secure Sockets Layer (SSL)/Transport Layer Security (TLS) with certificate verification. Client applications must add new CA certificates to their trust stores, including root and intermediate certificates where necessary. RDS database instances must separately use new server certificates before this hard expiration date. If you've missed previous communications on this subject, see the Database Blog post for more information [1].
For instructions on updating database certificates for RDS databases see the RDS User Guide for Rotating Your SSL/TLS Certificate [3].
For Amazon Aurora databases please see the RDS User Guide for Aurora Rotating Your SSL/TLS Certificate [4].
[1] https://aws.amazon.com/blogs/database/amazon-rds-customers-update-your-ssl-tls-certificates-by-february-5-2020/ [3] https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.SSL-certificate-rotation.html [4] https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/UsingWithRDS.SSL-certificate-rotation.html