AWS Security ChangesHomeSearch

AWS AmazonRDS documentation change

Service: AmazonRDS · 2026-07-01 · Documentation low

File: AmazonRDS/latest/UserGuide/UsingWithRDS.IAMDBAuth.md

Summary

Removed specific connection rate limit (200 connections/second) for IAM database authentication and deleted related performance caveats and mitigation recommendations.

Security assessment

The change removes performance limitations and recommendations but contains no evidence of addressing security vulnerabilities. It simplifies usage guidance without altering security properties of IAM authentication.

Diff

diff --git a/AmazonRDS/latest/UserGuide/UsingWithRDS.IAMDBAuth.md b/AmazonRDS/latest/UserGuide/UsingWithRDS.IAMDBAuth.md
index 1f246f5d5..b487984ef 100644
--- a//AmazonRDS/latest/UserGuide/UsingWithRDS.IAMDBAuth.md
+++ b//AmazonRDS/latest/UserGuide/UsingWithRDS.IAMDBAuth.md
@@ -26 +26 @@ IAM database authentication provides the following benefits:
-In general, consider using IAM database authentication when your applications create fewer than 200 connections per second, and you don't want to manage usernames and passwords directly in your application code.
+In general, consider using IAM database authentication when you don't want to manage usernames and passwords directly in your application code.
@@ -103,6 +102,0 @@ We recommend the following when using IAM database authentication:
-  * Use IAM database authentication when your application requires fewer than 200 new IAM database authentication connections per second.
-
-The database engines that work with Amazon RDS don't impose any limits on authentication attempts per second. However, when you use IAM database authentication, your application must generate an authentication token. Your application then uses that token to connect to the DB instance. If you exceed the limit of maximum new connections per second, then the extra overhead of IAM database authentication can cause connection throttling. 
-
-Consider using connection pooling in your applications to mitigate constant connection creation. This can reduce the overhead from IAM DB authentication and allow your applications to reuse existing connections. Alternatively, consider using RDS Proxy for these use cases. RDS Proxy has additional costs. See [RDS Proxy pricing](https://aws.amazon.com/rds/proxy/pricing/).
-