-
Notifications
You must be signed in to change notification settings - Fork 1.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
aws - rds - rdscluster - add new action for updating Parameter group attached to db instance or cluster #9505
base: main
Are you sure you want to change the base?
Conversation
@kapilt @ajkerrigan could you please assist with review this PR. thanks Jas |
@kapilt @ajkerrigan sorry to pester you guys .. could I please get your inputs on this PR .. |
It seems like we'd want to handle this with the existing param group modify action rather than needing to iterate over all the instances/clusters. As far as I can tell you could make those parameter changes today - the convenience piece we're missing is a filter on those parameter group resources to check existing parameter values. |
@ajkerrigan I am not sure how we can do it these are 2 different resources
|
Hey @jasgrover let's do the following:
|
Rds and rdscluster resource currently does not support an action to modify the parameter group attached to a db instance or cluster. Our compliance operations require a policy that checks if a db instance or cluster has TLS encryption enabled and set to correct version. The db instance or cluster matching the filter, cannot be updated since the "modify-pg' action is not available under the resource.
Sample policy