Creating an Amazon Aurora RDS Database (MySQL Compatible)

45 minutes
  • 4 Learning Objectives

About this Hands-on Lab

In this hands-on lab, we will create an Aurora MySQL database. First, we will verify that the security groups, network ACL (NACL), and route tables are all configured to allow communication between an instance in a public subnet and an RDS database in a private subnet. After verifying the appropriate settings are in place, we will create the database. Once that is done, we will use an EC2 instance as a bastion to allow us to connect to our private database from an external source. We will utilize MySQL Workbench to connect to our private RDS Aurora database through the public EC2 bastion.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Validate the Security Groups, Route Tables, and NACLs Are Configured Correctly
  1. Verify the NACL permits traffic on port 22 for SSH and port 3306 for MySQL/Aurora.
  2. Verify 2 route tables exist: one utilizing an internet gateway and another with no IGW/NAT routes.
  3. Verify the private subnet is associated with the route table that does not contain an internet gateway.
  4. Verify the public subnet is associated with the route table that does contain an internet gateway.
  5. Verify a security group exists permitting MySQL traffic.
  6. Verify a security group exists permitting SSH traffic to the bastion.
Create a Subnet Group for Your Aurora Cluster Containing Only Private Subnets
  1. Navigate to the Amazon RDS Dashboard and create a new Subnet Group named auroralabsubnetgroup for your Amazon Aurora MySQL Cluster. Ensure you select Availability Zones only containing private subnets.
Create an Amazon Aurora Cluster
  1. Create an Amazon Aurora (MySQL Edition) cluster named auroralabcluster with an Aurora Replica in a second Availability Zone for a Multi-AZ Deployment. Use a ‘db.t3.small’ instance size.
  2. Ensure you select the subnet group you created earlier.
Verify You’re Able to Authenticate to the Aurora Cluster
  1. Verify you’re able to authenticate to the newly created Amazon Aurora Cluster using the Cluster Writer or Reader Endpoint.
  2. After authenticating, execute the following query: show global variables like 'aurora_server_id';.

Additional Resources

Log in to the live AWS environment using the credentials provided, and make sure you are in the us-east-1 region.

During the Aurora Database Creation steps, please ensure you have not selected "Easy Create" as this results in a default instance class selection of R5, which will result in an explicit deny.

Download and install MySQL Workbench on your desktop. This application is necessary to connect to the MySQL database. You can download the file directly from MySQL.

Be sure to select the correct operating system!

For additional information regarding RDS database creation, please see the tutorial on AWS.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?