# rds-instance-iam-authentication-enabled
<a name="rds-instance-iam-authentication-enabled"></a>

Checks if an Amazon Relational Database Service (Amazon RDS) instance has Amazon Identity and Access Management (IAM) authentication enabled. The rule is NON\$1COMPLIANT if an Amazon RDS instance does not have IAM authentication enabled. 

**Note**  
The DB Engine should be one of 'mysql', 'postgres', 'aurora', 'aurora-mysql', or 'aurora-postgresql'. The DB instance status should be one of 'available', 'backing-up', 'storage-optimization', or 'storage-full'.

**Identifier:** RDS\$1INSTANCE\$1IAM\$1AUTHENTICATION\$1ENABLED

**Resource Types:** AWS::RDS::DBInstance

**Trigger type:** Configuration changes

**Amazon Web Services Region:** All supported Amazon regions

**Parameters:**

None  

## Amazon CloudFormation template
<a name="w2aac20c16c17b7e1243c19"></a>

To create Amazon Config managed rules with Amazon CloudFormation templates, see [Creating Amazon Config Managed Rules With Amazon CloudFormation Templates](aws-config-managed-rules-cloudformation-templates.md).