MySQL RDS - do the SSL certificate updates need to be applied in a specific order in and primary/replica configuration

I need to update SSL certificates on MySQL RDS instances that are linked in a Primary/replica configuration. If I update the replica first, will this cause issues with the replication and the break the connection between the two RDS instances?

The instances are hosted in different availabiiity zones within the same region.

Regards,

Ross

Topics

Migration & Modernization Analytics Database

Tags

Amazon Relational Database Service Database MySQL

Language

English

Ross H

asked a month ago200 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Accepted Answer

Hello Ross, as mentioned in the AWS blog below the CA Certificate update must be executed on each of the read replicas. These updates can happen among the Primary and Read Replica DB instances in any particular order.

[+] https://aws.amazon.com/blogs/database/amazon-rds-customers-update-your-ssl-tls-certificates-by-february-5-2020/#:~:text=The%20CA%20Certificate%20update%20must,instances%20in%20any%20particular%20order

SUPPORT ENGINEER

Gaurav_G

answered a month ago

Relevant content

RDS Certificate Update
Glenn Comiskey
asked 3 months ago
How long does it take to update the SSL/TLS certificate on an AWS MySQL RDS instance?
Accepted Answer
KARTHIK
asked a month ago
Amazon Lightsail MySQL Database SSL/TLS Certificates
turbodb
asked a month ago
Update of expired RDS SSL certificate
Accepted Answer
GLP
asked 13 days ago
How do I install a Let's Encrypt SSL certificate in a Bitnami stack that's hosted on Lightsail?
AWS OFFICIALUpdated 8 months ago
What do I need to do to update my SSL/TLS certificate for an Amazon RDS DB instance or Aurora DB cluster?
AWS OFFICIALUpdated a year ago
How do I set up an SSL connection between Hive on Amazon EMR and a metastore on Amazon RDS for MySQL?
AWS OFFICIALUpdated 2 years ago
How do I successfully connect to my Amazon RDS instance using an SSL connection?
AWS OFFICIALUpdated 2 years ago
Identify and rotate your Amazon RDS and Amazon Aurora SSL/TLS Certificates at scale
EXPERT
Yuriy Prykhodko
published 3 months ago
Announcement: RDS/Aurora SSL/TLS Certificates are expiring between May and October 2024
EXPERT
randyyoung
published 5 months ago