Back to All Checks
Medium RDS Regional

IAM authentication should be configured for RDS instances

NISTHIPAA

Description

Checks if RDS instances have IAM authentication configured. This check also fetches the tags associated with each RDS instance.

Remediation

To configure IAM authentication for RDS instances, follow these steps:

Steps

  1. Log in to the AWS Management Console and open the Amazon RDS console.
  2. In the navigation pane, click on 'Databases'.
  3. Select the RDS instance you want to configure for IAM authentication.
  4. Under the 'Configuration' tab, look for the 'IAM DB Authentication' option.
  5. Modify the instance to enable IAM DB Authentication if it is not already enabled.
  6. Apply the changes and wait for the instance to be updated.
  7. Create an IAM policy that allows the 'rds-db:connect' action.
  8. Attach this IAM policy to the IAM roles or users that need to authenticate to the RDS instance.
  9. Update your application's database connection string to use IAM authentication.

Compliance

NISTHIPAA
Start Your Free Security Check