rds_superuser role in postgres RDS server


I just created a new postgres RDS instace on aws (through the dashboard), and I gave it a default user, lets call him “jack”.

When I logged in to the instance, I saw my created user “jack”, and that he had a role “rds_superuser” attached. (so I thought that I can do the same things that I used to do with superuser on a regular postgres server).

I checked the documentation, I saw that wasn’t possible.

As logged in as the default user “stan”, I created a new database user like “stan”, and wanted to create a new databases with the owner being the user “stan”, I couldn’t?

I entered something like this:

But I got an error, saying something like:

ERROR: must be member of role “stan”

So, what I did was, made the role “stan”, logged out as the default user “jack”, logged into the RDS instance as “stan”, and created that database with him as the owner.

Since I had three different users, I had to repeat that last step three times.

My question, is there a way, that I can make the default user “jack” that I created during RDS postgres creation, capable of creating new databases (like superuser on a regular postgres server installation) and giving the different owners like this:



you were supposed to grant stan to rds_superuser in order to do that. You did:

you should:

I did it as rds superuser:

It’s good to know this further. This limitation of rds_superuser for ownership/grants and so on will keep hitting you until you grant role whose objects you want to manipulate (or on which behalf you want to grant) to rds superuser.

Leave a Reply