AWS AmazonRDS documentation change
Summary
Added note about Multi-AZ protection and security feature reconfiguration requirements after cross-region switchover.
Security assessment
Explicitly documents the need to re-enable security features (SSL, NNE) after role change to prevent unprotected operations, but doesn't fix a specific vulnerability.
Diff
diff --git a/AmazonRDS/latest/UserGuide/oracle-replication-switchover.md b/AmazonRDS/latest/UserGuide/oracle-replication-switchover.md index ad78f3290..614d088f7 100644 --- a//AmazonRDS/latest/UserGuide/oracle-replication-switchover.md +++ b//AmazonRDS/latest/UserGuide/oracle-replication-switchover.md @@ -141,0 +142,4 @@ If you perform a switchover to a cross-Region replica with different options, th +###### Note + +Because the switchover changes only the database role, the new primary database isn't protected by Multi-AZ until you enable it. After the switchover completes, review the new primary database and, if needed, enable Multi-AZ and reconfigure any options (such as SSL, NNE, OEM, and OEM_AGENT) that your application requires. +