Home > OS >  AWS RDS SSL - Does ssl server certificates different for each and every RDS instance or same?
AWS RDS SSL - Does ssl server certificates different for each and every RDS instance or same?

Time:09-17

I have 2 aws accounts having their own RDS instances(not publicly accessible) with db engine as postgresql 12.5. I downloaded RDS certificate from "https://truststore.pki.rds.amazonaws.com/global/global-bundle.pem". I am using JDBC(postgresql driver) with properties ssl=true and sslrootcert="path to above certificate" to establish secure connections. My questions:

  1. This certificate is same for both aws accounts which have different names, so how does it work , Does ssl hand shake verifies that client(jdbc connection) is talking to rds.amazonaws.com or the actual RDS instance which has separate name ?

  2. RDS certificates are replaced every 5 years, i.e. applications also have to update the certificate every 5 years or sooner than that once new certificate is available from RDS, is this correct ?

CodePudding user response:

Q1.

Yes, its same for all accounts. You can download it from docs enter image description here

Page link:https//www.codepudding.com/os/117988.html

Prev:Expo / ReactNative - React Navigation - Conditional Auth Flow
Next:SSL handshake shows cipher 0000
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding