RDS DB Instance Multiple AZ Should Be Enabled Rule

This rule ensures that RDS DB instances have multiple availability zone enabled for high availability.

Rule	RDS DB instance multiple az should be enabled
Framework	CISA-cyber-essentials
Severity	✔ Low

Rule Description: RDS DB Instance Multi-AZ Enabled for CISA-Cyber Essentials

This rule ensures that your Amazon RDS (Relational Database Service) DB instance has Multi-AZ (Availability Zone) enabled. Enabling Multi-AZ for your RDS DB instance helps ensure high availability and data durability in the event of an infrastructure failure or maintenance activity in one of the Availability Zones.

Troubleshooting Steps:

1.
Check the current configuration of your RDS DB instance.

2.
Verify if Multi-AZ is enabled for the DB instance.

3.
If Multi-AZ is not enabled, you need to modify the DB instance configuration to enable it.

Necessary Codes:

There are no specific codes required to enable Multi-AZ for your RDS DB instance. You can achieve this by using the AWS Management Console or the AWS Command Line Interface (CLI).

Step-by-Step Guide:

Method 1: Using the AWS Management Console

1.
Log in to the AWS Management Console.

2.
Navigate to the Amazon RDS service.

3.
Select the appropriate region.

4.
Click on "Databases" in the left side menu.

5.
Choose the target RDS DB instance for which you want to enable Multi-AZ.

6.
Click on "Actions" and select "Modify".

7.
In the "Availability & durability" section, choose the option "Enable Multi-AZ deployment".

8.
Scroll down and review the other configuration settings if needed.

9.
Click on "Continue" and proceed to modify the DB instance.

10.
Review the summary and click on "Modify DB instance" to apply the changes.

Method 2: Using the AWS CLI

1.
Open the AWS CLI or Terminal.

2.
Ensure that you have appropriate permissions to modify RDS DB instances.

Execute the following command to enable Multi-AZ for your RDS DB instance:

aws rds modify-db-instance --db-instance-identifier <your-db-instance-id> --multi-az

Replace

<your-db-instance-id>

with the actual identifier of your RDS DB instance.

4.
Wait for the modification task to complete.

Note: Enabling Multi-AZ may result in additional costs as it provisions a standby replica in a different Availability Zone to ensure high availability.

Conclusion:

By following the recommended troubleshooting steps and using the provided methods, you can enable Multi-AZ for your RDS DB instance to meet the requirements of CISA-Cyber Essentials. This ensures improved availability and durability of your database system.

RDS DB Instance Multiple AZ Should Be Enabled Rule

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Troubleshooting Steps:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Necessary Codes:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Step-by-Step Guide:

.css-1ekaeh4{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:22px;font-weight:700;margin-top:1rem;margin-bottom:0rem;}Method 1: Using the AWS Management Console

.css-1ekaeh4{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:22px;font-weight:700;margin-top:1rem;margin-bottom:0rem;}Method 2: Using the AWS CLI

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Conclusion:

Is your System Free of Underlying Vulnerabilities? Find Out Now