Vulnerabilities
Misconfiguration
Runtime Security
Compliance
Google > SQL >

Database SSL Enabled

MEDIUM
Source
CloudSploit
ID
database-ssl-enabled
management console

Database SSL Enabled

Ensures SQL databases have SSL enabled

Enabling SSL ensures that the sensitive data being transferred from the database is encrypted.

Follow the appropriate remediation steps below to resolve the issue.

  1. Log in to the Google Cloud Platform Console.

  2. Scroll down the left navigation panel and choose the “SQL” option under the “Storage.” Step

  3. On the “SQL” page , click on the “Instance ID” as a link option to select the “SQL” instance.Step

  4. On the “SQL” page, click on the “Connections” under the “MASTER INSTANCE.”Step

  5. On the “Conenctions” page, scroll down the page and check the “SSL Connections” whether they are allowed for unsecured or only secured connections. If it’s showing “Unsecured connections are allowed to connect to this instance” then it’s not as per the recommended guidelines.Step

  6. Repeat steps number 2 - 5 to check other “SQL Instances” in the account.

  7. Navigate to the “SQL” option under the “Storage”, choose the “SQL Instance” and click on the “Edit” button at the top.Step

  8. On the “Edit instance” page, scroll down and click on the “Allow only SSL connections” button under the “SSL connections.”Step

  9. Click on the “Create new certificate” button under the “Configure SSL server certificates” to create a new set of SSL certificates if needed.Step

  10. Repeat steps number 7 - 9 to ensure that SSL is enabled on all SQL databases.

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use