Amazon Aurora
User Guide for Aurora (API Version 2014-10-31)

Master User Account Privileges

When you create a new DB cluster, the default master user that you use gets certain privileges for that DB cluster. The following table shows the privileges the master user gets for each of the database engines.

Note

If you accidentally delete the permissions for the master user you can restore them by resetting the password for the account.

Database Engine

System Privilege

Role

Amazon Aurora MySQL

CREATE, DROP, GRANT OPTION, REFERENCES, EVENT, ALTER, DELETE, INDEX, INSERT, SELECT, UPDATE, CREATE TEMPORARY TABLES, LOCK TABLES, TRIGGER, CREATE VIEW, SHOW VIEW, LOAD FROM S3, SELECT INTO S3, ALTER ROUTINE, CREATE ROUTINE, EXECUTE, CREATE USER, PROCESS, SHOW DATABASES , RELOAD, REPLICATION CLIENT, REPLICATION SLAVE

Amazon Aurora PostgreSQL

LOGIN, NOSUPERUSER, INHERIT, CREATEDB, CREATEROLE, NOREPLICATION, VALID UNTIL 'infinity'

RDS_SUPERUSER