Need to access RdS database with iam role for master username and master password. I can use IAM role for database user. Any suggestions?
Using IAM Role for master username and password on RDS
695 Views Asked by Bk Bharath At
1
There are 1 best solutions below
Related Questions in AMAZON-RDS
- Installing the Kmeans PostgreSQL extension on Amazon RDS
- How do I Start/Stop AWS RDS Instances using Boto?
- AWS RDS: how to monitor data transfer out
- RDS instance storage limit handling
- Connecting to SQL Server on AWS RDS
- AWS RDS on Eclipse
- Using an AWS RDS instance across multiple VPC
- Controlling EC2 and RDS access for third party
- Can dumping and restoring database make it slower?
- Communication between Android and EC2 with RDS
- Is there any way to point ELB URL to RDS?
- Cant create postgres base type (with hstore/pgcrypto extensions) on amazon RDS
- Create user with no privileges in RDS for MySQL fails, error 1396
- How to have multiple RDS read replicas in Magento?
- How to take a backup of data to a local machine from the AWS?
Related Questions in AMAZON-IAM
- Amazon AWS IAM user link not accessible
- AWS IAM Policy to Allow User Access to A Single Elastic Transcoder Pipeline
- OpenAM Agentless Architecture options
- Controlling EC2 and RDS access for third party
- Is the aws IAM user link accessible from anywhere across the globe?
- AWS IAM policy simulation "cannot be performed"
- Amazon EC2 Tag Based Launch Permission
- Terraform: associate an aws_iam_role with an aws_iam_policy
- Restrict AWS Tag Names
- Can't see the billing info of my IAM user
- IAM Policy using Condition ec2:ResourceTag not working
- How to attach a managed policy to a lambda function in serverless framework
- Amazon Cognito Assigning IAM Roles to Groups in user pool and integration with Identity Pool
- AWS CloudFormation Stack update error: Requires capabilities : [CAPABILITY_IAM]
- How to create S3 bucket with all available permissions ? (on testing with mocha)
Related Questions in AWS-IAM-POLICY
- Restricting Amazon QuickSight Analysis creation with specific names
- AWS : User is not authorized to perform <Action> on on resource <Resource>
- AWS IAM Policy: The policy failed legacy parsing
- AWS Amplify, use Cognito attributes (sub, custom:userType) for IAM authenticated role to Read/Write on S3 bucket path
- Cannot create a resource following AWS IAM policy enforcement using CloudFormation
- AWS Cross-Account Role Assumption Denied Access for STS Role Session
- I want AWS IAM USERS not to see each other services
- S3: Access Denied on action Get Object Attributes of SSE-C encrypted object
- Dynamic IAM Policy for DynamoDB
- unable to assume role with gitlab oidc and AWS
- Issue restraining access to a single environment on AppConfig using IAM Policy
- How to hide specific folder using AWS STS AssumeRole session policy?
- AWS IAM api request failed with error "The request signature we calculated does not match the signature you provided"
- For the AWS CDK, how can I determine the appropriate IAM policy and permissions to replace a root account?
- Is there a way to control which resources/actions a role can define in a new policy?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
By definition iam authentication opposes pass authentication.
You could to it for the master role by granting it the rds_iam role inside of your db, but it will have all the rights granted to it.
If you want to do it for another role you can, you have to create a user/role in the local database and grant it the rds_iam role (or its equivalent in other db engine than postgres) and enable iam authentication on your rds instance or cluster, and then configure an iam role+policy to make this work.
To connect to the db with iam though you will in fact need the username (if you have done this for the master account then it will be the master username and if you have done it for another created user, it will be its username), but the password have to be a token generated with aws rds command or others ways, to connect via iam there is no need of a password, its password-less :)
here is a link you can follow: https://aws.amazon.com/premiumsupport/knowledge-center/users-connect-rds-iam