Remediation

Enable IAM Database Authentication

To enable IAM Database Authentication for an existing AWS RDS Aurora cluster, update the cluster configuration to allow authentication using IAM-generated tokens.

From Command Line

Run the following command to enable IAM database authentication for the specified DB cluster:

aws rds modify-db-cluster \
    --db-cluster-identifier {{cluster-id}} \
    --enable-iam-database-authentication \
    --apply-immediately

By default, configuration changes are applied during the next scheduled maintenance window. Using the --apply-immediately parameter forces the change to take effect as soon as possible, which may cause a brief service interruption depending on the cluster configuration.

Enable IAM Database Authentication​

From Command Line​

Enable IAM Database Authentication

From Command Line