Skip to content

RDS Security

RDS SecurityΒΆ

  • RDS databases are usually deployed within a [[private subnet]], not a [[public subnet]]
  • RDS security works by leveraging Security Groups (the same concept as for AWS EC2 instances) - it controls who can communicate with AWS RDS.
  • IAM Policy help control who can manage AWS RDS
  • Traditional Username and Password can be used to login to the database
  • IAM users can now be used too (for [[MySQL]] / AWS Aurora)