1 Answer
- Newest
- Most votes
- Most comments
1
Use an IAM user to change the RDS configuration from the management console.
The RDS Admin user is used to make changes within the database, such as creating tables.
In other words, the user you use will change depending on the operation you perform.
Relevant content
- asked 5 months ago
AWS OFFICIALUpdated 2 years ago- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 7 months ago
I think RDS administrator includes monitoring, performance tuning, backups, etc. Can all of these admin tasks be done using regular IAM account?
If an IAM policy that allows RDS operations is set, it is possible to perform those operations. CloudWatch's IAM policy is required for monitoring, but this can also be operated by an IAM user. For RDS administrators, I recommend creating an IAM user with an IAM policy called AmazonRDSFullAccess. https://docs.aws.amazon.com/aws-managed-policy/latest/reference/AmazonRDSFullAccess.html
You can authenticate to the database directly if setup to use IAM authentication but as Riku says an IAM user can administer the RDS instance form the GUI so long as they have the appropriate permissions.
The master username and password is the admin user for the server instance which allows you to manage tables database users etc.