|
The Iron Rose posted:Unlike both azure and GCP, aws does not have a clean solution to zero trust public access to RDS instances! You can sorta approximate it by using SSM port forwarding to a bastion host. which sucks and you also have to handle timeouts. There’s really not a great out of the box service, especially compared to azure cosmos db’s inherent identity proxy and the GCP CloudSQL auth proxy. strongdm has a pretty good solution for rds access, teleport has a less good solution that requires iam fuckery
|
# ¿ Sep 25, 2023 13:18 |
|
|
# ¿ May 22, 2024 14:13 |