SQL Instances Should Have Maintenance Scheduled Within the Next 30 Day
More Info:
Ensure that SQL Instances have Maintenance scheduled within the next 30 daysRisk Level
LowAddress
Security, Operational MaturityCompliance Standards
CBPTriage and Remediation
Remediation
Using Console
Using Console
To remediate the SQL Instances should have maintenance scheduled within the next 30 days misconfiguration in GCP using GCP console, follow the below steps:
- Login to your GCP console.
- Navigate to the Cloud SQL Instances page.
- Identify the SQL instance that needs maintenance scheduling and click on its name to open its details page.
- Click on the “Edit” button at the top of the page.
- Scroll down to the “Maintenance” section.
- Click on the “Edit” button next to the “Maintenance window” option.
- In the “Maintenance window” dialog box, select the preferred day and time for maintenance scheduling.
- Click on the “Save” button to save the changes.
- Verify that the maintenance scheduling has been successfully updated by checking the “Maintenance” section on the SQL instance details page.
- Repeat the above steps for all the SQL instances that need maintenance scheduling.
Using CLI
Using CLI
To remediate the misconfiguration “SQL Instances Should Have Maintenance Scheduled Within the Next 30 Day” for GCP using GCP CLI, you can follow the below steps:
- Open the GCP Cloud Shell from the GCP Console.
-
Run the following command to list all the SQL instances in your project:
gcloud sql instances list - Select the SQL instance for which you want to schedule maintenance.
-
Run the following command to schedule maintenance for the selected SQL instance:
gcloud sql instances patch [INSTANCE_NAME] --maintenance-window-day [DAY_OF_WEEK] --maintenance-window-hour [HOUR_OF_DAY]Replace [INSTANCE_NAME] with the name of your SQL instance, [DAY_OF_WEEK] with the day of the week on which you want to schedule maintenance, and [HOUR_OF_DAY] with the hour of the day on which you want to schedule maintenance. For example, to schedule maintenance for an instance named “my-sql-instance” every Sunday at 2:00 AM UTC, run the following command:gcloud sql instances patch my-sql-instance --maintenance-window-day SUN --maintenance-window-hour 02:00 -
Verify that the maintenance is scheduled by running the following command:
gcloud sql instances describe [INSTANCE_NAME]Replace [INSTANCE_NAME] with the name of your SQL instance. The output will show the maintenance window details.
Using Python
Using Python
To remediate the SQL Instances Should Have Maintenance Scheduled Within the Next 30 Day misconfiguration in GCP using Python, you can follow the below steps:
- Import the required libraries and authenticate to GCP using the service account credentials.
- Get the list of all the SQL instances in your GCP project.
- For each SQL instance, check if the maintenance window is not already set and if the instance is not in the process of being deleted.
- The above code will set the maintenance window start time for all the SQL instances that do not have it already set and are not in the process of being deleted.
<path_to_service_account_key_file> and <your_project_id> with the actual values for your GCP project.