Database health issues

Database Center uses data from your Google Cloud projects and Security Command Center to aggregate and categorize database health issues based on the resources in your Google Cloud organization, as defined by your company. Some companies might have more than one organization.

In Database Center, resources are the clusters and virtual machines that handle your workloads. An individual resource is a named unit of compute or storage. For example, in Cloud SQL, an instance and a read replica are separate individual resources.

A database resource group refers to all cloud computing resources that serve a set of data and have ongoing replication. For example, in Cloud SQL, one database resource group includes a primary instance and all the read replica instances associated with it.

Health issue categories

To help you view the most important aspects of your database fleet health at a glance, Database Center organizes health issues into industry-standard categories including availability, data protection, security, industry compliance, and logging.

A database health issue is any topic that you want to monitor to ensure that your fleet is healthy and that your applications are robust and secure.

You can customize which databases and health issues Database Center displays. When you customize health issues, your customizations only apply to your view of the organization. Health issue customizations are saved at the per-user level.

Health issue categories are described as follows:

Health issue category Description

Availability configuration

Availability issues track resource configurations that affect durability, fault tolerance, and downtime.

Cost

Cost issues help you optimize your database fleet for cost-saving opportunities.

Data protection

Data protection issues help you ensure the following:

  • Your data is properly backed up.
  • You store backups for a sufficient period of time.
  • There are no gaps in your overall data protection strategy.

Security

Security issues help you perform the following types of tasks:

  • Identify misconfigurations and vulnerabilities.
  • Identify and address cyber risks.
  • Detect threats to your Google Cloud resources.
  • Monitor and manage regulatory compliance.

Industry compliance

Industry compliance issues help you ensure that the database resources in your organization are compliant with common industry standards. Database Center helps you monitor compliance for the following industry standards:

  • CIS Google Cloud Foundation 2.0
  • CIS Google Cloud Foundation 1.3
  • CIS Google Cloud Foundation 1.2
  • CIS Google Cloud Foundation 1.1
  • CIS Google Cloud Foundation 1.0
  • NIST 800-53
  • ISO-27001
  • PCI-DSS v3.2.1

Performance and capacity

Performance and capacity issues help you determine if your resource usage is affecting your database performance. These issues highlight the following:

  • Databases with a large number of tables or high table utilization
  • Instances with high CPU and memory utilization
  • Temporary tables affecting database performance

Other

Other issues include configurations that can help you with the following:

  • Query troubleshooting, like "query durations not logged"
  • Errors and logging scope, like "verbose error logging"
  • Settings related to connections and users, like "connections max not configured"

Supported health issues

To view the health issues for a specific database, select one or more Google Cloud database product:

Category Issue
Availability Resource not failover protected
Data protection No automated backup policy
Data protection Short backup retention
Data protection Last backup failed
Data protection Last backup older than 24h
Industry compliance Violates NIST 800-53
Industry compliance Violates ISO-27001
Security Unencrypted connections
Security Auditing not enabled for important instance
Security Server certificate expiring
Performance and capacity Underprovisioned resource

What's next