I am trying to apply an Option Group when I create my Oracle RDS instance. I am trying to set Oracle Native Network Encryption through the Option Groups. We have already some setup but I was trying to create an Option Group on the fly and add set the settings. I read this article here that says it is not supported. Is that still the case? Article on StackOverflow
If I can create them on the fly as the stack is being created I get an error that says a resource section is needed. What am I missing here?
AWSTemplateFormatVersion: 2010-09-09
OracleRDSOptionGroup:
Type: AWS::RDS::OptionGroup
Properties:
OptionGroupDescription: "Allows NNE"
EngineName: oracle-ee-cdb
MajorEngineVersion: "19"
OptionConfigurations:
-
OptionName: NATIVE_NETWORK_ENCRYPTION
OptionSettings:
-
Name: SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER
Value: "SHA1,MD5"
-
Name: SQLNET.ENCRYPTION_SERVER
Value: "REQUIRED"
-
Name: SQLNET.ENCRYPTION_TYPES_SERVER
Value: "AES256"
-
Name: SQLNET.CRYPTO_CHECKSUM_SERVER
Value: "REQUIRED"
resource section is needed.
Well, you need Resources section:
AWSTemplateFormatVersion: 2010-09-09
Resources:
OracleRDSOptionGroup:
Type: AWS::RDS::OptionGroup
Properties:
OptionGroupDescription: "Allows NNE"
EngineName: oracle-ee-cdb
MajorEngineVersion: "19"
OptionConfigurations:
-
OptionName: NATIVE_NETWORK_ENCRYPTION
OptionSettings:
-
Name: SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER
Value: "SHA1,MD5"
-
Name: SQLNET.ENCRYPTION_SERVER
Value: "REQUIRED"
-
Name: SQLNET.ENCRYPTION_TYPES_SERVER
Value: "AES256"
-
Name: SQLNET.CRYPTO_CHECKSUM_SERVER
Value: "REQUIRED"
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.