How do I reset the master user password for my Amazon RDS DB instance?

Last updated: 2022-09-30

I want to reset the master user password for my Amazon Relational Database Service (Amazon RDS) DB instance. How can I do this?

Short description

You can change the master user password for your DB instance using the RDS console.

For clustered systems, such as Amazon Aurora, reset the password for any RDS DB instance in the cluster with a Writer or Reader role. Then, choose Apply Immediately. The password change is asynchronous and applies as soon as possible. This means that the RDS DB instance doesn't require a restart.

Note: Existing connections aren't dropped. However, you must provide the updated password for reconnecting.

Resolution

To modify the master user password of your DB instance, do the following:

  1. Open the Amazon RDS console.
  2. Select Databases.
  3. Select the RDS DB instance, and then choose Modify.
    Note: If you use Aurora, expand the cluster, and choose the instance that you want to modify. Then, choose Modify.
  4. Enter the master user password you want to use in the New Master Password field.
    Note: The password change is asynchronous, and applies as soon as possible. This change ignores the Apply Immediately setting.
  5. Choose Continue, and then choose Modify DB Instance.

Note: In some cases, your RDS master user might lose their privileges. If this happens, reset the master user password on the DB instance to regain access and restore privileges that might have been accidentally revoked. The password can be the same one used previously or a new password.

To modify the master user password using the AWS Command Line Interface (AWS CLI), use the modify-db-instance command. To modify the master user password for an Aurora cluster using AWS CLI, use the modify-db-cluster command.

You can also modify an RDS DB instance using the Amazon RDS API ModifyDBInstance.

Note: If you receive errors when running AWS Command Line Interface (AWS CLI) commands, make sure that you're using the most recent AWS CLI version.

The Status field for your RDS DB instance on the RDS dashboard changes to resetting-master-credentials. When the modification is complete, the Status column changes to Available.