Reputation: 340
Google cloud (GCP) SQL limit on the SSL certificates
Our company uses MySQL on the GCP.
For the prod database, we use SSL certificates - we have one for our services and a couple of "personal" certs for different developers.
Currently, I'm creating new certificates for other developers and I just noticed that GCP allows only to create up to 10 (!) certificates per database - which is no way enough if we want to issue each developer its own personal certificate.
Is there any way to overcome this limitation? The goal is to have a separate SSL certificate per developer, which is a much higher number than 10.
Upvotes: 1
Views: 261
Answers (1)
Reputation: 81434
I think you are trying to overdesign a solution. The SSL certificate is used to encrypt connections. This does not help you with identity/database security beyond encrypted connections. Use MySQL style security to protect database access in addition to SSL connection encryption. SSL setup is a CPU intensive action. Multiple certificates adds to that overhead. I recommend limiting your certificates to groups of users and not one per user.
Is there any way to overcome this limitation?
No, this is a hard limit that you cannot change.
Consider using the Cloud SQL Proxy which provides multiple additional benefits.
Upvotes: 2
Related Questions
- Mysql 8 connect only with ssl-ca (server-ca.pem)
- GCP Cloud SQL - 250 of 2000
- BigQuery couldn't connect to cloud SQL (MYSQL)
- Google Cloud SQL connection limit is not the same as in the documentation
- max no of allowed concurrent connections of google cloud sql from app engine
- Cloud SQL Connection Limits with Google APP Engine
- Unable to connect to Google SQL over SSL
- Google Cloud SQL CA certificate
- Google Cloud SQL 2nd generation : "certificates" is a keyword?
- How to connect to Google Cloud SQL by SSL?