Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions,
see Getting Started with Amazon Web Services in China
(PDF).
A standalone account owns the decision to enable or disable a protection plan in their
Amazon Web Services account in a specific Amazon Web Services Region.
If your account is associated with a GuardDuty administrator account through Amazon Organizations, or by the method of
invitation, this section doesn't apply to your account. For more information, see Enabling RDS Protection in multiple-account environments.
After you enable RDS Protection, GuardDuty will start monitoring RDS login activity for the
supported databases in your account.
Choose your preferred access method to configure RDS Protection for a standalone account.
- Console
-
Open the GuardDuty console at https://console.amazonaws.cn/guardduty/.
-
In the navigation pane, choose Protection Plans.
-
Choose Configure all enablements. Under
RDS Protection, choose Enable to enable
RDS Protection.
-
Choose Save all, then choose Confirm and
save.
- API/CLI
-
Run the updateDetector API operation using your own regional
detector ID and passing the features object name as
RDS_LOGIN_EVENTS and status as ENABLED.
Alternatively, you can use Amazon CLI to enable RDS Protection. Run the following command, and
replace 12abc34d567e8fa901bc2d34e56789f0 with your account's
detector ID and us-east-1 with the Region where you want to
enable RDS Protection.
To find the detectorId for your account and current Region, see the
Settings page in the https://console.amazonaws.cn/guardduty/ console,
or run the ListDetectors API.
aws guardduty update-detector --detector-id 12abc34d567e8fa901bc2d34e56789f0 --region us-east-1 --features '[{"Name" : "RDS_LOGIN_EVENTS", "Status" : "ENABLED"}]'