Skip to main content

lacework-global-383

Enable automatic minor version upgrades for Relational Database Service (RDS) instances (Automated)

Description

Enabling automatic minor version upgrades ensures that the Relational Database Management System (RDBMS) automatically installs the updates.

These upgrades might include security patches and bug fixes. Keeping up to date with patch installation is an important step in securing systems.

Remediation

From the AWS Console:

  1. Log in to the AWS Management Console.
  2. Click Services.
  3. Select Database > RDS.
  4. Click Databases.
  5. Select the applicable database.
  6. Click Modify.
  7. Under Maintenance, select the checkbox beside Enable auto minor version upgrade.
  8. Click Continue.
  9. Choose Apply immediately, and click Modify DB Instance.

From CLI:

aws rds modify-db-instance --db-instance-identifier <db_instance_id> --auto-minor-version-upgrade

References

https://docs.aws.amazon.com/securityhub/latest/userguide/rds-controls.html#rds-13
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.DBInstance.Modifying.html
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_UpgradeDBInstance.Upgrading.html#USER_UpgradeDBInstance.Upgrading.AutoMinorVersionUpgrades

Last updated on