Amazon RDS

Create an integration to manage access to AWS-managed RDS databases


Amazon RDS is a managed service supporting multiple database engines, easing tasks like data migration, backup, recovery, and patching. RDS facilitates easy deployment, operation, and scaling of cloud relational databases. Two of the supported databases are MySQL and PostgreSQL.

MySQL is a reliable, stable, and secure open-source relational database system serving as a primary data store for various applications, websites, and products, including mission-critical applications and dynamic websites.

PostgreSQL databases are open-source systems emphasizing extensibility and SQL compliance.

Through this integration, Apono helps you securely manage access to both Amazon RDS for MySQL and Amazon RDS for PostgreSQL.


Before starting this integration, create the items listed in the following table.

Item Description
Apono Connector On-prem connection with network access to your Amazon RDS instances

Minimum Required Version: 1.3.2

Use the following steps to update an existing connector.
Secret Secret ARN generated through AWS Secrets Manager using credentials for an admin-level user of the Amazon RDS instance:
"password": "PASSWORD"

** make sure you tag the secret with Apono Tag

Apono does not store credentials. The Apono Connector uses the secret to communicate with services in your environment and separate the Apono web app from the environment for maximal security.

User MySQL or PostgreSQL user for Apono

The user must have one of the following permissions:
  • MySQL: How to create a MySQL user for Apono
  • PostgreSQL:
    CREATE USER apono_connector WITH ENCRYPTED PASSWORD 'password';
    ALTER USER apono_connector WITH CREATEROLE;
    GRANT rds_superuser TO apono_connector;
AWS Tag(Optional) Metadata label assigned to AWS resources

Adding an AWS tag, enables Apono to discover and add resources on your behalf.

When adding an AWS tag, use the following information:
  • Tag key: apono-secret
  • Value: Secret ARN

Integrate Amazon RDS

Amazon RDS tile

Amazon RDS tile

Use the following steps to complete the integration:

  1. On the Catalog tab, click Amazon RDS. The Connect Amazon RDS page appears.
  2. From the dropdown menu, select a connector. Choosing a connector links Apono to all the RDS instances on the account where the connector is located.


    If the desired connector is not listed, click + Add new connector and follow the instructions for creating an AWS connector.

  1. Click Next. The Complete setup page appears.
  2. Enter a unique, alphanumeric, user-friendly Integration Name. This name is used to identify this integration when constructing an Access Flow.
  3. From the Region dropdown menu, select a region. You may only select one region.
  4. Click Connect. Apono will establish connections to your available MySQL and PostgreSQL instances, enabling you to select from a list of these instances.

Now that you have completed this integration, you can create access flows that grant permission to your Amazon RDS databases.