RDS database

Create, configure, and manage RDS instances directly from the DuploCloud Portal.

DuploCloud supports the following RDS databases in AWS:

*Support for Aurora Serverless V1 database engines has been deprecated. Do not create V1 engines when using Terraform.

Creating an RDS database

1. In the DuploCloud Portal, navigate to Cloud Services -> Database.

2. Click Add. The Create a RDS page displays.
3. Complete the following fields:

   • RDS Name: Enter a unique name for the RDS instance. DuploCloud suggests using the Tenant name as a prefix, e.g., tenantname-db.

   • Create from Snapshot (Optional): Select an existing snapshot to restore from if applicable.

   • RDS Engine: Choose the database engine (e.g., MySQL, PostgreSQL, MariaDB).

   • RDS Engine Version: Select the engine version.

   • Encryption Key (Optional): Select an encryption key if needed for encryption at rest.

   • Storage Type (Optional): Choose the storage type (e.g., General Purpose SSD, Provisioned IOPS).

   • Storage Size in GB (Optional): Specify the storage size in GiB. (Minimum: 20 GiB, Maximum: 65,536 GiB.)

   • RDS Instance Size: Choose an instance type based on performance needs.

   • DB Parameter Group (Optional): Select a custom database parameter group if needed.

   • DB Subnet Group (Optional): Choose a subnet group for the database network configuration.

   • Backup Retention Period in Days: Enter a retention period between 1 and 35 days.

   • User Name: Enter the database username. (Required)

   • User Password: Enter a secure password for the database. (Required)

   • Optionally, select Enable Performance Insights.

   • Performance Insights Retention in Days (Optional): Enter the retention period for Performance Insights data. (Default: 7 days, Maximum: 731 days.)

   • Performance Insights Encryption (Optional): Select an encryption key for encrypting Performance Insights data. (If not specified, AWS will use the default key.)

   • Enable Additional Features (Optional):

     • Enable IAM Auth

     • Store Credentials in Secrets Manager

     • Enable Multi-AZ

     • Enable Logging

4. Click Create to provision the RDS database.

Creating an Aurora Serverless V2 Cluster database

You can create Aurora Serverless V2 Databases by selecting Aurora-MySql-Serverless-V2 or Aurora-PostgreSql-Serverless-V2 from the RDS Database Engine list box. Select the RDS Engine Version compatible with Aurora Serverless v2. The RDS Instance Size of db.serverless applies to both engines.

Creating Aurora databases

Create Aurora Serverless V2 Cluster Database

You can create Aurora Serverless V2 Databases by selecting Aurora-MySQL-Serverless-V2 or Aurora-PostgreSQL-Serverless-V2 from the RDS Engine list box. Select the RDS Engine Version compatible with Aurora Serverless v2. The db.serverless RDS Instance Size applies to both engines.

Storage Type Selection for Aurora

When creating an Aurora MySQL or Aurora PostgreSQL database, you can select between two storage types:

• Aurora (standard storage type for Aurora databases).

• aurora-iopt1 (optimized for high IOPS performance and low-latency disk operations, ideal for performance-intensive applications).

Creating a publicly available RDS database

1. Create a DB subnet group in AWS consisting only of public subnets from your VPC.

2. In the DuploCloud Portal, navigate to Cloud Services -> Databases

3. Select the RDS tab, and click Add. The Create a RDS page displays.

4. In the DB Subnet Group list box select the public DB subnet group you created in AWS.

5. Complete the remaining fields according to your requirements.

6. Click Create. The publicly available RDS database is created.

To create a public RDS database, you much first create a DB subnet group in AWS consisting only of public subnets from your VPC. Then follow the steps above to create an RDS database, selecting the DB subnet group you created from the DB Subnet Group list box.

Connecting to the database

Once you create the database, select it and use the Instances tab to view the endpoint and credentials. Use the Endpoints and credentials to connect to the database from your application running in an EC2 instance. The database is only accessible from inside the EC2 instance in the current Tenant, including the containers running within.

For databases you intend to make publicly available, ensure proper security measures, including broad accessibility, are in place to protect your data.

Updating performance insights for an existing RDS

1. In the DuploCloud Portal, navigate to Cloud Services -> Database and select the RDS tab.

2. Click on the RDS name in the NAME column.

3. From the Actions menu, select RDS Settings and then Update Performance Insights. The Update Performance Insights pane displays.

4. Select Enable Performance Insights.

5. In the Performance Insights Retention in Days field, enter a retention period (1–731 days).

6. From the Performance Insights Encryption list box, select an encryption key or select No Encryption.

7. Click Update to apply the changes.

Managing RDS Certificate Authorities

You can manage the Certificate Authority (CA) for an RDS instance when creating a new RDS database or by updating the CA for an existing database.

Choosing a Certificate Authority When Creating an RDS Database

During the RDS creation process, select a Certificate Authority from a dropdown menu.

This option ensures that the RDS instance is set up with the correct certificate authority to encrypt communications using SSL/TLS. The selected CA will validate certificates to ensure secure and trusted connections.

Updating the Certificate Authority for an Existing RDS Database

If you need to update the Certificate Authority used by an existing RDS database, you can do so through the Actions menu in the RDS instance settings:

1. Navigate to Cloud Services → Databases.

2. Select the RDS tab.

3. Select the RDS you want to modify from the NAME column.

4. From the Actions menu, choose RDS Settings.

5. Click Update Certificate Authority.

6. In the Certificate Authority list box, select the new CA to use for the instance.

7. Click Save to apply the new CA.