Limitations

The following table lists known limitations that apply to Database Center.

Category	Description
Gemini	Gemini only answers questions about Database Center within the context of a Google Cloud project. Gemini provides query suggestions and health issues based on all instances and databases in your project. Generated queries or displayed health issues may based on data outside your region or VPC. To improve the response to your questions, try using the word database in your query.
Supported security issues based on Security Command Center pricing tiers	Security Command Center Standard tier supports the following security health issues for Cloud SQL in Database Center: Public IP enabled Exposed to public access Security Command Center Premium tier supports the following security health issues in Database Center: Unencrypted connections Databases not auditable No password Weak password Encryption key not customer-managed Server authentication not required Exposed by ownership chaining Exposed to external scripts Exposed to local data loads Logs not optimized for troubleshooting Connection attempts not logged Disconnections not logged Query durations not logged Verbose error logging Error logging misconfigured for statements Error logging misconfigured for statement severity Error log misconfigured for message severity Not logging only DDL statements Exposed to remote access Database names exposed Sensitive trace info not masked
Security health issue dependencies not displayed	Database Center doesn't check for issues that are dependent on Security Command Center unless you have the Standard or Premium tier enabled. If Security Command Center isn't enabled, then all issue checks display as passing in the user interface, which might not be accurate.

Category

Description

Gemini

Gemini only answers questions about Database Center within the context of a Google Cloud project.
Gemini provides query suggestions and health issues based on all instances and databases in your project. Generated queries or displayed health issues may based on data outside your region or VPC.
To improve the response to your questions, try using the word *database* in your query.

Supported security issues based on Security Command Center pricing tiers

Security Command Center Standard tier supports the following security health issues for Cloud SQL in Database Center:

Public IP enabled

Exposed to public access

Security Command Center Premium tier supports the following security health issues in Database Center:

Unencrypted connections

Databases not auditable

No password

Weak password

Encryption key not customer-managed

Server authentication not required

Exposed by ownership chaining

Exposed to external scripts

Exposed to local data loads

Logs not optimized for troubleshooting

Connection attempts not logged

Disconnections not logged

Query durations not logged

Verbose error logging

Error logging misconfigured for statements

Error logging misconfigured for statement severity

Error log misconfigured for message severity

Not logging only DDL statements

Exposed to remote access

Database names exposed

Sensitive trace info not masked

Security health issue dependencies not displayed

Database Center doesn't check for issues that are dependent on Security Command Center unless you have the Standard or Premium tier enabled. If Security Command Center isn't enabled, then all issue checks display as passing in the user interface, which might not be accurate.