- Newest
- Most votes
- Most comments
As far as I understand, you followed the documentation for rotate your certificates. There is a link where you can find global certificate bundles and per-region.
I have several ideas what could go wrong:
- You have your, previously downloaded, global bundle and need to download a new one, compare them and replace if needed.
- You are not using your .pem file as an argument for mysql connection but using a system wide certs. In the case you need follow the instruction for your OS how to update re-generate certificates globally.
I did a couple of test and I can now connect to the database server with the new CA through nagios check_mysql plugin, php8.1-mysql and mysql client. They weren't using the new pem certificate. However, the problem is still there in Laravel, but I'm now asking the Laravel community since AWS RDS is working right. Thanks for your help.
P.S: In laravel, I solved the connection problem with PDO::MYSQL_ATTR_SSL_VERIFY_SERVER_CERT => 'false'
Thanks.
I'm using the latest global-bundle.pem certificate and I verified it comparing it with the one from your link. It's where I downloaded it.
I'm also using the .pem file as an argument in all mysql connections. Two days ago I changed my connection string from rds-combined-ca-bundle.pem to global-bundle.pem and verified that the SSL connection was working as usual.
At the moment, I have no SSL routines::certificate verify failed error in my connection and I'm using the latest global-bundle.pem certificate. It's on the server that I had to go back to rds-ca-2019 certificate authority.
Relevant content
- asked 9 months ago
- asked 8 months ago
- asked 3 months ago
- asked 5 months ago
AWS OFFICIALUpdated 3 months ago- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- How do I get notified when the certificate associated to the Client VPN endpoint is about to expire?AWS OFFICIALUpdated 6 months ago
