Authentication

RDS database cluster is using the default master username

Platform(s)
Compliance Frameworks

Description

An Amazon Relational Database Service (Amazon RDS) DB cluster is a distributed database architecture in which data is spread across multiple nodes (called instances) to provide high availability, fault tolerance, and scalability for a database workload. The DB Cluster Master Username is the username used to authenticate to the primary instance of an RDS DB cluster and manage the cluster. It was detected that RDS database cluster {AwsRdsDbCluster} is using a default master username - '{AwsRdsDbCluster.MasterUsername}'. Default administrative usernames on Amazon RDS clusters are public knowledge. When creating an Amazon RDS cluster, you should change the default administrative username to a unique value to reduce the risk of unintended access.

  • Recommended Mitigation

    To change the admin username associated with the Amazon RDS database cluster, it is recommended to create a new RDS database cluster and change the default admin username to a unique username while creating the database.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.