👀 Views: 76 💬 Answers: 1 📅 Created: 2025-06-20

aws lambda rds vpc iam Python

I'm dealing with Could someone explain I've searched everywhere and can't find a clear answer... I'm working with an scenario where my AWS Lambda function want to connect to an RDS instance, even though it's supposed to have the correct IAM role and security group settings. I have a Lambda function written in Python 3.8, and it's configured to run within a VPC that contains the RDS instance. Here’s the IAM policy attached to my Lambda role: ```json { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "rds:DescribeDBInstances", "rds:Connect" ], "Resource": "*" } ] } ``` The Lambda function is triggered by an API Gateway event, and I've made sure that the security group of the RDS instance allows inbound connections from the security group of the Lambda function. However, when I try to establish a connection, I get the following behavior: ``` OperationalError: (sqlite3.OperationalError) unable to open database file ``` I suspect that the database connection string might be incorrect or that the Lambda function is not in the same subnet as the RDS instance, but I have verified that both are in the same VPC and subnet. Here’s how I’m attempting to connect to the RDS instance in my Lambda handler: ```python import pymysql def lambda_handler(event, context): connection = pymysql.connect( host='my-rds-endpoint.amazonaws.com', user='myuser', password='mypassword', database='mydatabase' ) # Perform database operations... ``` I've also tried to add a NAT gateway to my VPC for outbound internet access, but that didn't seem to help. I've double-checked the Lambda execution role and the security groups, but I'm still exploring. Any insights on what might be going wrong or how I can debug this scenario further? For context: I'm using Python on macOS. Is there a better approach? Could this be a known issue?