Providing secure access to your applications - AMS Advanced Onboarding Guide

Providing secure access to your applications

Like the operating system access, all application access should be governed using Active Directory (AD) groups. Using Amazon RDS as an example, you must break the mirror to add a new user without AD groups. So the best approach is to create a group in AD and add it at database creation time.

For more information on Active Directory grouping, see Using Group Nesting Strategy – AD Best Practices for Group Strategy