RDS database does not have IAM authentication enabled
Description
IAM authentication uses AWS Identity and Access Management (IAM) to authenticate users and applications that connect to your RDS database. This can be more secure than traditional password-based authentication, as it allows you to use IAM policies and multi-factor authentication to control access to your database.
Code Example
go
resource "aws_db_instance" "test" {
...
+ iam_database_authentication_enabled = true
}Remediation
Terraform
- Resource: "aws_db_instance
- Arguments: iam_database_authentication_enabled
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0210 |
| Severity | MEDIUM |
| IaC Type | Cloudformation |
| Frameworks | CloudFormation, Terraform, TerraformPlan, Serverless |
| Checkov ID | CKV_AWS_161 |