Change security group on AWS RDS Database Instance

Its better to not add open inbound rules to the default security group attached to the DB Instance. Create a new Security group and then Modify your DB Instance where you can select the newly created security group. Note that you can attach more than one Security group to the DB Instance.


Your Amazon RDS database is currently using the "default" security group. Therefore, you have two choices:

  • Modify the default security group, or
  • Create a new security group (as your have done), then go to the RDS console, click on your database, then choose Instance actions -> Modify and modify the security groups that are associated with the DB instance (add the new security group, remove the default security group)

Security groups are set up within the EC2 service, so to create a new security group, go to the EC2 service, then click Security Groups on the left, under Network & Security.


To modify the default security group simply follow the next steps

  1. Go to Amazon RDS console

  2. Click on the instance

  3. Click on the security group

  4. Add an inbound rule

enter image description here