Your organization requires that all connections to Amazon RDS instances be encrypted using TLS. Which configuration step is necessary to enforce this requirement?