Stacksync Documentation
  • What is Stacksync?
  • 🚀 Start here
    • Quick start
    • Community
  • 💡Guides
    • Modify Salesforce Data in Postgres
    • 🔄Two-way sync Salesforce and Postgres
      • Create a Postgres Database with Supabase (free forever)
      • Create a Salesforce Developer instance (free forever)
      • Create a Sync between Supabase Postgres and Salesforce
    • ⚡Event Triggers
    • 🔣Add a new custom field to an existing sync
  • 🔗 Connectors
    • Salesforce
      • Authorize Salesforce
        • ⚙️Enable API Access in Salesforce
    • Postgres
      • Authorize Postgres
        • Supabase
        • Cloud SQL
        • Digital Ocean
        • Heroku
        • Amazon Lightsail
        • Amazon RDS
          • Ensuring Secure RDS Connections with SSL Certificate
        • Basedash
        • Render
        • Retool
      • Snippets
      • Required Permissions
    • BigQuery
      • Authorize BigQuery
    • HubSpot
      • Authorize HubSpot
      • Associations
      • HubDB
      • Attachments
    • MotherDuck
    • Supabase
    • Snowflake
      • Authorize Snowflake
    • Attio
      • Authorize Attio
    • Pipedrive
      • Authorize Pipedrive
    • Front
      • Authorize Front
    • Zoho
      • Authorize Zoho
    • MySQL
      • Authorize MySQL
        • Ensure Secure RDS connection with SSL Certificate
        • Access Private RDS database through SSH Tunnel
    • MariaDB
      • Authorize Mariadb
        • Ensure Secure RDS connection with SSL Certificate
        • Access Private RDS database through SSH Tunnel
    • Netsuite
      • Authorize Netsuite
    • MongoDB
    • Shopify
      • Authorize Shopify
    • Zendesk
      • Authorize Zendesk
    • 🤖Setup options
      • 🏳️IP Whitelisting
      • 🚰Manage API rate limits
      • 🌍Choose data processing region
      • SSH Tunneling
        • Access private ASW RDS instance through Jumpbox
        • Azure Jumpbox
        • Windows Server 2022 Jumpbox
        • Windows Server 2025 Jumpbox
        • GCP Jumpbox
  • 📦 API Proxy
    • Salesforce
    • HubSpot
    • Attio
    • Pipedrive
  • Features
    • Two-way sync
    • Event triggers
      • Webhook (HTTP call)
      • Database Query
    • Update Sync configuration
    • Associations support
    • Manage workspace users
    • Manage API rate limits
    • Delete Record Protection
    • Issues dashboard
    • Custom sync frequencies
    • Other features
      • Sync statistics
      • Monitoring
    • 🔐Security
      • SSO & SCIM
        • Azure Entra ID
        • OKTA
      • MFA
  • Workflows
    • Workflows Quick Start
    • Features
      • Variables and Secrets
        • Variable replacement
  • Legal
    • Terms of Service and Conditions (TC)
    • Privacy Notice
    • Service Consumption Tables
    • Global Employee and Applicant Privacy Notice
    • Acceptable Use Policy (AUP)
    • Data Processing Addendum (DPA)
    • Referral Programme Policy
    • Terms and Conditions for Stacksync Content Creator Programme
    • Stacksync Certified Partner Program Terms and Conditions
  • Security
    • Overview - Security
    • Subprocessors
    • EU Data Protection
  • Others
    • Content Creator Guidelines
Powered by GitBook
On this page
  • 1. Identify the SSL Certificate used by your RDS
  • 2. Download the SSL Certificate
  • Upload the SSL certificate to Stacksync
  1. 🔗 Connectors
  2. Postgres
  3. Authorize Postgres
  4. Amazon RDS

Ensuring Secure RDS Connections with SSL Certificate

PreviousAmazon RDSNextBasedash

Last updated 5 months ago

Providing the database's SSL certificate when connecting to RDS database is important to verify the server's identity and prevent man-in-the-middle (MITM) attacks. Without specifying the certificate, the client cannot be sure it is connecting to the intended server, leaving the connection vulnerable to interception by malicious actors. By supplying the SSL certificate, the client can authenticate the server's identity, ensuring that the data exchange happens only with the legitimate database server. This verification step adds a critical layer of trust and security in database connections.

1. Identify the SSL Certificate used by your RDS

  1. Access the AWS Console:

    • Log in to the AWS Management Console and navigate to the RDS service.

    • Select the target database instance.

  2. Determine Certificate Details:

    • Identify the Certificate Authority (CA) your database uses.

    • Confirm the AWS Region where your database is hosted.

2. Download the SSL Certificate

  1. Download from AWS Documentation:

  1. Extract the Correct Key:

  • The downloaded certificate file includes three keys for supported encryption methods: rsa2048, rsa4096, and ecc384.

  • Use a text editor like VSCode to open the file.

  • Select the appropriate certificate based on your database’s encryption method:

    • Shortest key: ecc384

    • Longest key: rsa4096 (commonly used for enterprise-grade databases).

Upload the SSL certificate to Stacksync

When creating a new database connection in the Stacksync app, upload the selected SSL certificate to complete the secure configuration.

If you have any questions or need further assistance, reach out to us at hello@stacksync.com. We’re here to help ensure a seamless and secure database connection setup.

Visit the and locate the appropriate certificate bundle based on your database’s region (e.g., eu-west-3).

AWS RDS SSL Documentation