Skip to content

Ensure Relational Database Service is Multi-AZ Enabled.

Description

Checks whether or not the MultiAz (multiple availabilty zones) setting is enabled for this aurora cluster. When MultiAz is set, in the case of an infrastructure failure, Amazon Aurora performs an automatic failover to read replica, so that you can resume database operations as soon as the failover is complete. Since the endpoint for your DB Instance remains the same after a failover, your application can resume database operation without the need for manual administrative intervention.

Rationale

For production workloads, ensuring availability in the face of a hardware outage is critical.

Applies To

  • Databases

Tags

This rule is applied when the following tags are present:

Tag With Value
secureclouddb/provider aws
secureclouddb/service rds
secureclouddb/resource-type cluster

Default Rule

const { isAwsRdsCluster } = aws
/**
 * @param {Object} databaseSettings - database settings object
 * @returns {boolean} true if a Multi AZ is enabled
 */
function validate(databaseSettings) {
    const success = isAwsRdsCluster(databaseSettings) &&
                    databaseSettings.awsDatabaseInstance.rdsCluster.multiAz

    return {
        success,
    }
}

// invoke
validate(databaseSettings);