RDS PostgreSQL

AWS service of an open-source relational database management system emphasizing extensibility and SQL compliance.

Integrate with Apono to view existing permissions and create Access Flows to PostgreSQL databases.

Overview

  • Reduce Over Privileges - Discover existing privileges to RDS PostgreSQL databases and convert them to on-demand access flows to reduce over-privileges.
  • Self Service Access - Empower your developers to gain self-servable access to databases using Slack.
  • Automated Approval Workflows - Create approval workflows to specific sensitive databases.
  • Restricted Third Party Access - Grant third-party (customer or vendor) time-based access to specific databases with MFA verification.
  • Review Access - View a detailed access audit of who was granted access to which databases with what permission level and why.

Prerequisites

  • Permission to view Secret Manager details.
    Apono does not store credentials. Therefore these permissions are required to be able to connect using the AWS Secret Manager

How To Integrate PostgreSQL

📘

Have you connected an AWS account?

Make sure you have first integrated your AWS account to Apono. If not, follow this AWS Integration step-by-step guide.

  1. Click on Integrations Catalog.
  2. Under Data Sources, look for PostgreSQL and click Connect
1789
  1. Specify the integrations details:
  • Integration name – type the name of the integration
    When building an Access Flow you will reference this name
  • Select the Connector – specify the AWS account Connector name with access to this PostgreSQL
  • Hostname – specify the hostname of the PostgreSQL you are connecting

Identify the secret

  • Region – Choose the region where the secret resides
  • Secret ID – Choose the secret ID that is used to access this RDS PostgreSQL with admin privileges. If you don't have one you can create one.
    To find the secretID go to your AWS account -> RDS -> DB Instances -> PostgreSQL identifier. Click on the Tags tab, copy the secret value, and paste it to the Secret ID on the PostgreSQL integration page.
    If you would like to create a secret, see this guide
  • Click Connect

👍

Hurray!

Congratulations on connecting you RDS PostgreSQL. You can now create Access Flows that grant permissions to your RDS PostgreSQL databases.

Discover resources using tags

By adding the apono-secret AWS tag, you can let Apono discover and add resources for you.

Tag name: apono-secret, Value: The Secret ARN
Important: use the same AWS Secret you created for your rds