RDS S3 integration

Hi there,

Enabling the new S3 Integration feature involves two actions against your RDS Oracle instance:

1. attach an IAM role containing a policy that allows access to your S3 bucket(s), and
2. add the S3_INTEGRATION option to your option group.

If you have only added the S3_INTEGRATION option, you will still need to create an IAM policy with S3 access privileges, create an IAM role that includes the policy, and then add the IAM role to your RDS instance. Instructions for doing this using the AWS console or CLI can be found in the "Prerequisites for Amazon RDS Oracle Integration with Amazon S3" section of the RDS user guide.

https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/oracle-s3-integration.html#oracle-s3-integration.preparing

Hope that helps. Thanks!
Michael

Hello,

We are using an RDS Oracle instance in GovCloud.

The existing roles are Service-Linked Roles.

According to the documentation on the following page, AWS creates the service-linked role for you when you create a DB instance and RDS does not allow you to edit the service-linked role.
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.IAM.ServiceLinkedRoles.html

So, I was able to create the IAM policy as described earlier in this thread, but cannot attach that policy to the existing role. How is this supposed to be done with a service-linked role?

Thanks
Morgan

Edited by: MorganNajjar on Aug 2, 2019 6:07 AM