Quick Info
| Plugin Title | Database SSL Enabled |
| Cloud | |
| Category | SQL |
| Description | Ensures SQL databases have SSL enabled |
| More Info | Enabling SSL ensures that the sensitive data being transferred from the database is encrypted. |
| GOOGLE Link | https://cloud.google.com/sql/docs/mysql/instance-settings |
| Recommended Action | Ensure that SSL is enabled on all SQL databases. |
Detailed Remediation Steps
- Log in to the Google Cloud Platform Console.
- Scroll down the left navigation panel and choose the “SQL” option under the “Storage.”
- On the “SQL” page , click on the “Instance ID” as a link option to select the “SQL” instance.
- On the “SQL” page, click on the “Connections” under the “MASTER INSTANCE."
- On the “Conenctions” page, scroll down the page and check the “SSL Connections” whether they are allowed for unsecured or only secured connections. If it’s showing “Unsecured connections are allowed to connect to this instance” then it’s not as per the recommended guidelines.
- Repeat steps number 2 - 5 to check other “SQL Instances” in the account.
- Navigate to the “SQL” option under the “Storage”, choose the “SQL Instance” and click on the “Edit” button at the top.
- On the “Edit instance” page, scroll down and click on the “Allow only SSL connections” button under the “SSL connections."
- Click on the “Create new certificate” button under the “Configure SSL server certificates” to create a new set of SSL certificates if needed.
- Repeat steps number 7 - 9 to ensure that SSL is enabled on all SQL databases.