If SSL encryption is enabled for an ApsaraDB for Redis instance, the evaluation result is Compliant.
Scenarios
Enable the SSL encryption feature for an ApsaraDB for Redis instance to improve connection security. After you enable the feature, install SSL certificates issued by certificate authorities (CAs) on your application. SSL encryption protects connections at the transport layer, increasing data security and ensuring data integrity.
Risk level
Default risk level: medium.
You can change the risk level based on your business requirements when you apply this rule.
Compliance evaluation logic
- If the SSL encryption feature is enabled for an ApsaraDB for Redis instance, the evaluation result is Compliant.
- If the SSL encryption feature is disabled for an ApsaraDB for Redis instance, the evaluation result is Incompliant. For more information about how to fix this, see Incompliance remediation.
Rule details
| Item | Description |
| Rule name | redis-instance-enabled-ssl |
| Rule identifier | redis-instance-enabled-ssl |
| Tag | Redis and SSL |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Evaluation frequency | Every 24 hours |
| Supported resource type | ApsaraDB for Redis instance |
| Input parameter | None. |
Incompliance remediation
Enable the SSL encryption feature for an ApsaraDB for Redis instance. For more information, see Configure SSL encryption.