Help Center/ Config/ User Guide/ Resource Compliance/ Built-In Policies/ Relational Database Service/ RDS Instances Have SSL Enabled

Updated on 2025-08-25 GMT+08:00

View PDF

RDS Instances Have SSL Enabled

Rule Details

**Table 1** Rule details
Parameter	Description
Rule Name	rds-instance-ssl-enable
Identifier	rds-instance-ssl-enable
Description	If SSL is not enabled for an RDS instance, this instance is non-compliant.
Tag	rds
Trigger Type	Configuration change
Filter Type	rds.instances
Rule Parameters	None

Application Scenarios

Without the use of Secure Sockets Layer (SSL), data transmitted between an RDS instance and server is vulnerable to eavesdropping, tampering, and man-in-the-middle attacks. To improve data transmission security, you are advised to add the REQUIRE SSL attribute to database users and enable SSL encryption. For details, see Security Best Practices

Solution

Perform the following steps to enable SSL encryption for RDS instances:

Rule Logic

If SSL is disabled for an RDS DB instance, this instance is non-compliant.
If SSL is enabled for an RDS DB instance, this instance is compliant.

Parent topic: Relational Database Service

Previous topic: Flavor Check

Next topic: RDS Default Port Check

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.