- Manage access to Amazon Aurora resources and databases on a DB cluster as per user’s task as
- Run DB cluster in a virtual private cloud (VPC) based on the Amazon VPC service for the greatest possible network access control.
- Use AWS Identity and Access Management (IAM) policies to assign permissions to manage Amazon Aurora resources.
- Use security groups to control what IP addresses can connect to databases on a DB cluster.
- Use Secure Socket Layer (SSL) connections with DB clusters running the Aurora MySQL or Aurora PostgreSQL.
- Use Amazon Aurora encryption to secure DB clusters and snapshots at rest.
- Use the security features of DB engine to control who can log in.
- set up principals with IAM.
- Use multi-factor authentication (MFA) with each account.
- Use SSL/TLS to communicate with AWS resources.
- Set up API and user activity logging with AWS CloudTrail.
AWS Certified DevOps Engineer Free Practice TestTake a Quiz