AWS-RDS-Instances-event-subscription-enable

Severity: High

Description: This control ensures that if an event subscription covering all event categories is enabled and associated with the RDS DB Instance. RDS Event Subscription provides notifications using the AWS Simple Notification Service (SNS) when an event occurs in the RDS DB Instance. This provides on-time notifications of any crucial events to the administrator. An event subscription covering all event categories should be enabled and associated with each RDS DB Instance.

Remediation Steps:

Perform following to update RDS instance event subscription :

1. Login to the AWS Management Console at https://console.aws.amazon.com.

2. Step 1: create a SNS topic

   1. In Navigation panel, choose Topics.

   2. Click Create Topic.

   3. Configure topic name and other settings as required.

   4. Click Create Topic.

3. Step 2: Create an Event Subscription for RDS DB Instance

   1. On Navigation pane, choose Event Subscriptions.

   2. Click Create event subscription.

   3. Enter an appropriate Name for the subscription.

   4. Select ARN under Target to configure existing SNS topic or select New email topic to create a new SNS topic.

   5. Under Source, select Source Type as Instance.

   6. Either Select All instances to create a subscription for all instance or Select Select specific instances to specify DB Instance for the subscription.

   7. For Event categories to include, select All event categories.

   8. Click Create.

Important:

Reference :

• https://aws.amazon.com/premiumsupport/knowledge-center/create-rds-event-subscription/

• Working with Amazon RDS event notification - Amazon Relational Database Service