Rule: RDS DB Instance Multiple AZ Should Be Enabled

This rule ensures that RDS DB instances are configured to operate in Multiple Availability Zones.

Rule	RDS DB instance multiple az should be enabled
Framework	NIST 800-53 Revision 5
Severity	✔ Low

RDS DB Instance Multiple AZ Configuration for NIST 800-53 Revision 5

Rule Description

To comply with the NIST 800-53 Revision 5 standard, it is required to enable multiple Availability Zones (AZs) for your Amazon RDS database instances. This ensures the resilience and availability of your database by automatically replicating your primary RDS instance to a standby instance in a different AZ.

Troubleshooting Steps (if applicable)

If you encounter any issues while configuring multiple AZs for your RDS DB instance, consider the following troubleshooting steps:

1.
Ensure that your AWS account has sufficient privileges to modify RDS configurations.

2.
Verify that the targeted RDS DB instance is currently in an available state.

3.
Confirm that your chosen AWS region supports multiple AZs for RDS instances.

4.
Check if your default VPC or custom VPC has subnets available in multiple AZs.

Necessary Codes (if applicable)

The following AWS CLI code can be used to enable Multi-AZ deployment for an existing RDS DB instance:

aws rds modify-db-instance --db-instance-identifier <your-db-instance-id> --multi-az

Step-by-Step Guide for Remediation

Follow the steps below to enable Multi-AZ for your RDS DB instance:

1.
Log in to the AWS Management Console.

2.
Navigate to the Amazon RDS service.

3.
Select the AWS region where your RDS DB instance resides.

4.
Click on "Databases" in the side menu.

5.
Choose the desired RDS DB instance from the list.

6.
Click on the "Modify" button in the top-right corner.

7.
Scroll down to the "Deployment" section.

8.
Check the box next to "Enable Multi-AZ deployment."

9.
Review the other configuration settings to ensure they align with your requirements.

10.
Click on the "Continue" button.

11.
On the confirmation page, review the summary of the changes.

12.
Click on the "Modify DB instance" button to initiate the configuration change.

13.
Wait for the modification process to complete. This might involve a brief downtime.

14.
Verify that the multi-AZ configuration is enabled by checking the "Multi-AZ" column in the RDS DB instances list.

Once the Multi-AZ configuration is successfully enabled, your RDS DB instance will have a standby instance created in a different AZ, providing high availability and fault tolerance for your database.

Rule: RDS DB Instance Multiple AZ Should Be Enabled

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Rule Description

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Troubleshooting Steps (if applicable)

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Necessary Codes (if applicable)

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Step-by-Step Guide for Remediation

Is your System Free of Underlying Vulnerabilities? Find Out Now

Rule Description

Troubleshooting Steps (if applicable)

Necessary Codes (if applicable)

Step-by-Step Guide for Remediation

Is your System Free of Underlying Vulnerabilities?
Find Out Now