Login

Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

Rule: RDS DB Instance Automatic Minor Version Upgrade Enabled

This rule ensures RDS DB instance automatic minor version upgrade is enabled.

RuleRDS DB instance automatic minor version upgrade should be enabled
FrameworkCISA-cyber-essentials
Severity
High

Rule Description

Enabling automatic minor version upgrades for Amazon RDS DB instances is a necessary security measure to ensure that your databases remain up to date with the latest bug fixes, security patches, and feature enhancements.

Automatic minor version upgrade helps in keeping your RDS DB instances secure and eliminates the need for manual intervention to apply minor version upgrades. This rule specifically focuses on enabling automatic minor version upgrades for RDS DB instances in compliance with the CISA Cyber Essentials guidelines.

Policy

To comply with the CISA Cyber Essentials guidelines, the RDS DB instance automatic minor version upgrade setting should be enabled.

Troubleshooting Steps

If you encounter any issues related to enabling automatic minor version upgrades for RDS DB instances, follow these troubleshooting steps:

  2. 1.
    Verify IAM Permissions: Check if the user or role performing the action has the necessary IAM permissions to modify RDS settings.
  4. 2.
    Verify RDS DB Instance Status: Ensure that the RDS DB instance is in an available state and not undergoing any maintenance or modification.
  6. 3.
    Check DB Instance Compatibility: Verify that the current database engine version is compatible with automatic minor version upgrades. Some older versions may not support this feature.
  8. 4.
    Check Region Compatibility: Ensure that the selected AWS region supports automatic minor version upgrades for RDS DB instances. Not all regions may offer this capability.

If the issue persists, consider contacting AWS Support for further assistance.

Necessary Code

No code is required for this rule.

Step-by-Step Guide

Follow these steps to enable automatic minor version upgrades for an RDS DB instance:

  2. 1.
    Open the Amazon RDS console.
  4. 2.
    Select the desired AWS region.
  6. 3.
    In the navigation pane, click on "Databases" to view the list of RDS DB instances.
  8. 4.
    Select the RDS DB instance for which you want to enable automatic minor version upgrades.
  10. 5.
    Click on the "Modify" button at the top of the page.
  12. 6.
    In the "Maintenance & backups" section, locate the "Automatic minor version upgrade" option.
  14. 7.
    Check the box next to "Enable automatic minor version upgrade."
  16. 8.
    Review any other modification settings you wish to apply.
  18. 9.
    Click on the "Continue" button.
  20. 10.
    Review the summary of changes.
  22. 11.
    Click on the "Modify DB instance" button to apply the changes.

Once enabled, your RDS DB instance will automatically receive minor version upgrades whenever they become available, ensuring that your database remains secure and up to date.

Is your System Free of Underlying Vulnerabilities?
Find Out Now