Neptune DB clusters should have IAM database authentication enabled

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

This control verifies whether IAM database authentication is enabled for a Neptune DB cluster.

Enabling IAM database authentication for Amazon Neptune clusters eliminates the need to store user credentials within the database itself, as authentication is handled externally through IAM. When enabled, all requests must be signed using AWS Signature Version 4.

Remediation

For guidance on enabling IAM database authentication, please refer to the Enabling IAM database authentication in Neptune section of the Neptune User Guide.