- Newest
- Most votes
- Most comments
Hi!
It seems that the error you're encountering is related to the SSL/TLS configuration between your client (likely the EC2 instance) and the RDS MariaDB. This error typically occurs when the client cannot validate the server's certificate due to the absence of a local Certificate Authority (CA) certificate or incorrect configuration.
Here are some steps you can take to resolve this issue:
-
Download the AWS CA Certificate: To connect to RDS MariaDB using SSL, you need to have the appropriate CA certificate. You can download the AWS CA certificate from this link. Make sure to select the correct certificate for the Malaysia region (AP-SOUTHEAST-1).
-
Configure the Client to Use the Certificate: After downloading the certificate, you need to configure your client to use it. If you're using MySQL Workbench or another database client, there will be an option to specify the path to the CA certificate.
-
Check RDS Configuration: Verify that the
require_secure_transport
parameter is set toON
in the RDS parameter group. If this parameter is set toON
, all connections to the database require SSL. If needed, you can temporarily set it toOFF
for testing purposes, but this is not recommended for production due to security reasons. -
Check the Security Group: Ensure that the Security Group associated with your RDS allows inbound connections on port 3306 (or another configured port) from the Security Group associated with your EC2 instance.
-
Configure the EC2 Instance: If you're trying to connect to RDS from an EC2 instance using SSH and tunneling, make sure the SSH tunnel is correctly set up and that the SSL connection is being established through that tunnel.
-
Update Operating System Certificates: Ensure that the EC2 instance has up-to-date CA certificates. On Linux-based systems, you can update the certificates using commands like
sudo update-ca-certificates
.
Note: Disabling SSL is not recommended, especially in production environments, as SSL protects the integrity and confidentiality of the data transmitted between the client and server.
Relevant content
- asked 3 years ago
- asked 4 years ago
- Accepted Answerasked 2 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated a month ago