Authentication

RDS database instance is using the default master username

Platform(s)
Compliance Frameworks
  • AWS Foundational Security Best Practices Controls
    • ,
  • Brazilian General Data Protection (LGPD)
    • ,
  • CCPA
    • ,
  • cis_8
    • ,
  • coppa
    • ,
  • CPRA
    • ,
  • Data Security Posture Management (DSPM) Best Practices
    • ,
  • GDPR
    • ,
  • HITRUST
    • ,
  • iso_27001_2022
    • ,
  • iso_27002_2022
    • ,
  • New Zealand Information Security Manual
    • ,
  • NIST 800-53
    • ,
  • Orca Best Practices
    • ,
  • PDPA
    • ,
  • pipeda

Description

An Amazon Relational Database Service (Amazon RDS) DB instance is an isolated database environment running in the cloud. The DB Instance Master Username is the username used to connect to the DB instance and perform administrative tasks or access the data stored within that instance. It was detected that RDS database instance {AwsRdsDbInstance} is using a default master username - '{AwsRdsDbInstance.MasterUsername}'. Default administrative usernames on Amazon RDS databases are public knowledge. When creating an Amazon RDS database, you should change the default administrative username to a unique value to reduce the risk of unintended access.
Need help?

Get a free Security Risk Assessment. Start today

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo