- Mais recentes
- Mais votos
- Mais comentários
Hello.
while i create or provision a db , can i configure it such that a random password is generated and stored in secrets manager?
If "manage_master_user_password" is set to true, a random password will be saved in Secrets Manager.
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/db_instance
also, if i set publicly_accessible to false, i am assuming i have to provide private subnet groups in my vpc ? and i should be able to access it from my vpc only?
If "publicly_accessible" is set to false, RDS will be assigned a private IP address even if started in a public subnet.
As you know, you can only connect from the same VPC as RDS.
Therefore, I think it is better to use a connection method that uses EC2 etc. as a stepping stone, as introduced in the AWS document below.
https://aws.amazon.com/jp/blogs/mt/use-port-forwarding-in-aws-systems-manager-session-manager-to-connect-to-remote-hosts/
Below are best practices and guidelines.
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_BestPractices.html
Conteúdo relevante
- AWS OFICIALAtualizada há 2 anos
- AWS OFICIALAtualizada há 3 meses