Use Kerberos authentication with Amazon Aurora MySQL
Database Blog
This article discusses how to integrate self-managed Microsoft Active Directory (AD) with AWS Managed Microsoft AD, enable Kerberos authentication in Amazon Aurora MySQL, and authenticate with Kerberos from Windows and Linux clients.
Specifically, the article covers:
- Overview of Kerberos authentication
- Solution architecture involving self-managed and AWS-managed AD environments
- Prerequisites like establishing forest trust between AD domains
- Creating an Aurora MySQL cluster and enabling Kerberos authentication
- Creating an AD domain user and database user for Kerberos authentication
- Configuring Kerberos on Windows and connecting to Aurora MySQL
- Configuring Kerberos on Linux and connecting to Aurora MySQL
- Cleaning up the resources after use
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Jun 16
2025
2025
Implement row-level security in Amazon Aurora MySQL and Amazon RDS for MySQL
Aug 15
2025
2025
Securing Amazon Aurora DSQL: Access control best practices
Apr 16
2026
2026
Build resilient Kerberos authentication for Aurora Global Database without joining Active Directory domain
May 28
2026
2026
Amazon Aurora MySQL now supports integration with Kiro Powers
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.