Skip to main content

RDS Instance SSL Enabled

ID: rule:aliyun:rds-instance-enabled-ssl
Severity: medium
IaC Types: ROS, Terraform

Description

Ensures RDS instances have SSL encryption enabled.

Reason for Violation

SSL encryption protects data in transit from eavesdropping and tampering.

Recommendation

Set ssl_action to "Open" for the RDS instance to enable SSL.

Resource Types

  • ROS: ALIYUN::RDS::DBInstance
  • Terraform: alicloud_db_instance