Use AWS Identity and Access Management (IAM) policies to assign permissions that determine who is allowed to manage RDS resources? For example, you can use IAM to determine who is allowed to create, describe, modify, and delete DB instances, tag resources, or modify DB security groups.http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.html