A Guide on Establishing a Private Connection between Amazon RDS and Amazon QuickSight

Overview

Organizations increasingly turn to cloud services for their data analytics needs in today’s dynamic business landscape, where data is a critical asset. As this migration occurs, ensuring the security of data analytics becomes paramount. This comprehensive guide is designed to establish a secure and private connection between your Amazon RDS and Amazon QuickSight instances. By configuring your Amazon RDS instance within a private subnet and implementing the necessary security measures, you can create an enhanced and protected environment for seamless data analysis.

Pioneers in Cloud Consulting & Migration Services

Reduced infrastructural costs
Accelerated application deployment

Get Started

Introduction

As businesses harness the power of cloud services, safeguarding sensitive data during analytics processes is a top priority. This guide is tailored to assist you in creating a secure and private connection between Amazon RDS and Amazon QuickSight.

The key components of this process involve configuring security groups, establishing an Amazon Virtual Private Cloud (VPC) connection, and creating a designated data source within Amazon QuickSight.

Following these steps ensures your data remains secure while leveraging the benefits of cloud-based analytics.

Pre-requisites

AWS Account with necessary permissions.
Amazon QuickSight enterprise account with admin access.
Amazon RDS instance (MySQL) in a private subnet.

Step-by-Step Guide

Step 1: Create a Security Group for Amazon QuickSight

Go to the Amazon VPC console and identify the Amazon VPC of your Amazon RDS instance.
Create a new security group for Amazon QuickSight inside the same VPC (e.g., quicksight_sg).
Configure inbound rules: All TCP, Port Range: 0 – 65535, Source: Security group ID of your Amazon RDS instance.
Configure outbound rules: Custom TCP Rule, Port Range: 3306 (MySQL), Destination: Security group ID of your Amazon RDS instance.

step1

step1b

step1c

Step 2: Modify the Security Group of the Amazon RDS instance

Navigate to the Amazon RDS console.
Access the security group associated with your RDS instance.
Add an inbound rule: Custom TCP Rule, Port Range:3306, Source: QuickSight security group ID.

step2

step2b

Step 3: Create a Private Connection in Amazon QuickSight

In the AWS Management Console, use the search bar and enter “Amazon QuickSight”
Log in to your Amazon QuickSight account by providing the account name, username, and password.
Once you log in successfully, then on the top-right corner of the screen, click on the user icon. From the drop-down menu, select “Manage QuickSight”
On the left side of the QuickSight management console, locate and click on “Manage VPC Connection”
Click on the “Add VPC Connection” In the prompted form, fill in the following details:

VPC ID: Select the VPC of your RDS instance.
Subnet ID: Choose the private subnet where the RDS instance resides.
Security Group ID: Enter the ID of the QuickSight security group.
Execution Role: Choose the Amazon QuickSight service role.

Once you have entered the required information, click the “Add” button to create the VPC connection. Once it is created, we must wait to see if the Amazon VPC connection status becomes available.

step3

Step 4: Create a Datasource in Amazon QuickSight for Data Validation

In the QuickSight console, go to the “Datasets”
Choose “New dataset” and select the “RDS”
Provide configurations and select the VPC connection created in Step 3.
Configure connection details, including the database name, endpoint, and authentication credentials for data validation.

step4

step4b

Conclusion

Following these steps, you’ve successfully established a private connection between your Amazon RDS instance and Amazon QuickSight, ensuring secure data access for authorized services. This robust configuration provides a foundation for leveraging the full potential of cloud-based data analytics while maintaining the highest security standards.

Drop a query if you have any questions regarding Amazon RDS instance or Amazon QuickSight and we will get back to you quickly.

Empowering organizations to become ‘data driven’ enterprises with our Cloud experts.

Reduced infrastructure costs
Timely data-driven decisions

Get Started

About CloudThat

CloudThat is an award-winning company and the first in India to offer cloud training and consulting services worldwide. As a Microsoft Solutions Partner, AWS Advanced Tier Training Partner, and Google Cloud Platform Partner, CloudThat has empowered over 850,000 professionals through 600+ cloud certifications winning global recognition for its training excellence including 20 MCT Trainers in Microsoft’s Global Top 100 and an impressive 12 awards in the last 8 years. CloudThat specializes in Cloud Migration, Data Platforms, DevOps, IoT, and cutting-edge technologies like Gen AI & AI/ML. It has delivered over 500 consulting projects for 250+ organizations in 30+ countries as it continues to empower professionals and enterprises to thrive in the digital-first world.

FAQs

1. Why is establishing a private connection between Amazon RDS and Amazon QuickSight necessary?

ANS: – Ensures data security in a cloud analytics environment by enabling communication within a secure, isolated network, safeguarding sensitive data from threats and unauthorized access.

2. How do I verify the successful establishment of the Amazon VPC connection in Amazon QuickSight?

ANS: – Check the “Manage VPC Connection” status on the Amazon QuickSight console; it should change to “Available.” Be patient, as the connection may take time to be fully established.

3. Is it possible to establish a private connection between Amazon RDS and Amazon QuickSight if they are in different AWS accounts or regions?

ANS: – Yes, but it requires additional considerations and configurations.

WRITTEN BY Anusha

Anusha works as Research Associate at CloudThat. She is an enthusiastic person about learning new technologies and her interest is inclined towards AWS and DataScience.