Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🐞 Quicksight can't connect to aws rds - postgres (v14 and above) #6094

Open
LavMatt opened this issue Nov 12, 2024 · 4 comments
Open

🐞 Quicksight can't connect to aws rds - postgres (v14 and above) #6094

LavMatt opened this issue Nov 12, 2024 · 4 comments
Labels
bug Something isn't working

Comments

@LavMatt
Copy link
Contributor

LavMatt commented Nov 12, 2024

Describe the bug.

The issue is an encryption type mismatch between the postgres version (15) we have used for aws rds instance and the driver used by quicksight.

Postgres 14 and above encrypts passwords using SCRAM and before that (which is what quicksight expects) uses md5. This results in the following error when trying to connect to CP postgres from AP quicksight

The authentication type 10 is not supported. Check that you have configured the pg_hba.conf file to include the client's IP address or subnet, and that it is using an authentication scheme supported by the driver.

Suggested fixes relate to configuring postgres to encrypt passwords using md5 encryption

some useful links
https://community.amazonquicksight.com/t/my-quicksight-cannot-connect-to-rds-postgresql-db-via-vpc/4696/4
https://repost.aws/questions/QUH9WSQIV7Q026ODqYS7p2HQ/rds-data-source-validation-timeout-in-amazon-quicksight

To Reproduce

  1. go to quicksight on the ap
  2. click datasets>new dataset
  3. click postgreSQL
  4. enter db info and try to connect

Expected Behaviour

to be able to connect to postgres via quicksight

Additional context

No response
@LavMatt LavMatt added the bug Something isn't working label Nov 12, 2024
@LavMatt LavMatt mentioned this issue Nov 12, 2024
Closed
2 tasks
@jacobwoffenden
Copy link
Member

Raised with AWS - 173149054800692

@julialawrence julialawrence moved this from 👀 TODO to 🚀 In Progress in Analytical Platform Dec 10, 2024
@jacobwoffenden
Copy link
Member

IIRC this was solved after DC team made some changes to RDS, we should capture them in user guidance

@YvanMOJdigital YvanMOJdigital moved this from 🚀 In Progress to 🛂 In Review in Analytical Platform Dec 11, 2024
@YvanMOJdigital YvanMOJdigital moved this from 🛂 In Review to 👀 TODO in Analytical Platform Dec 11, 2024
@jacobwoffenden
Copy link
Member

👋 @ministryofjustice/data-catalogue do you have list of things you did to make this work?

@MatMoore
Copy link
Contributor

@jacobwoffenden we basically had to change to md5 for the user that connects to quicksight. The commands are in our runbook here https://runbooks.find-moj-data.service.justice.gov.uk/documentation/runbooks/015-dashboard.html#data-connectivity

Looks like you're already in the email chain with AWS but let me know if you want me to resend that as well.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
Analytical Platform
Status: 👀 TODO
Milestone
No milestone
Development

No branches or pull requests
3 participants
@MatMoore @jacobwoffenden @LavMatt