RDS instances should have IAM authentication enabled

이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Description

This control checks if an RDS instance has IAM database authentication enabled. The control specifically evaluates RDS instances using the following engine types: mysql, postgres, aurora, aurora-mysql, aurora-postgresql, and mariadb. Additionally, an RDS instance must be in one of these states for a finding to be generated: available, backing-up, storage-optimization, or storage-full.

IAM database authentication allows users to authenticate to database instances using an authentication token instead of a password. This mechanism ensures that network traffic to and from the database is encrypted using SSL. For more details, see the IAM database authentication section in the Amazon Aurora User Guide.

Remediation

To enable IAM database authentication on RDS instances, see Enabling and disabling IAM database authentication in the Amazon RDS User Guide.

PREVIEWING: esther/docs-9478-fix-split-after-example