Error connecting to Aurora DB using the "Amazon RDS" profile

Question

Error connecting to Aurora DB using the "Amazon RDS" profile

varunmenon opened this issue 3 years ago · 4 comments

Hi,

I'm trying to connect to an Aurora DB provisioned in the Asia Pacific (Sydney) region using SSL - using the "Amazon RDS" profile from a node application hosted on Tanzu platform (PCF). However, getting the following error:

"Error: unable to get local issuer certificate"

Here's my config:

       {
            host: process.env.DB_HOST_NAME,
            user: process.env.DB_USER,
            password: process.env.DB_PASSWORD,
            database: process.env.DB_NAME,
            multipleStatements: true,
            ssl: "Amazon RDS"
        }

When I try to use the "rejectUnauthorized" to false, the connection succeeds. Also, Java applications are able to successfully connect and so does npm applications when trying to run db migrations using the db-migrate package (specifying ssl to true). Any idea what I could be doing wrong?

Answer 1 · 2021-12-20T01:51:50.000Z

Hi, sorry you are having trouble. It looks like the cert is in the module, but they do change over time. What version of this module are you using? Recently the certs were updated.

Answer 2 · 2021-12-20T02:15:06.000Z

Oh ok. I'm currently using version 2.16.0. Will try updating to 2.18.1 (?) and see if that solves the issue.

Answer 3 · 2021-12-20T02:18:08.000Z

Gotcha. I believe you need the updated certs in 2.18.0 for that region now as RDS continues to migrate to the new 2024 certs.

Answer 4 · 2021-12-20T22:52:45.000Z

That works. Thanks @dougwilson