Is User Auto Provisioning Unsupported on Aurora RDS?

[computerphilosopher]

Hello,

I’m trying to enable the auto provisioning feature for Aurora RDS.

According to the documentation, the db_roles field must be specified for the role assigned to Teleport users. The FAQ mentions that if a role is not assigned, an error will occur. When I attempted auto provisioning, I encountered the exact error described in the documentation:

Access Denied to Database Error: https://goteleport.com/docs/enroll-resources/database-access/auto-user-provisioning/mysql/#access-denied-to-database-error

However, unlike MySQL, Aurora RDS doesn’t support the concept of roles—only users exist, as noted in the AWS documentation:

Users and Roles in Aurora MySQL: https://docs.aws.amazon.com/ko_kr/dms/latest/sql-server-to-aurora-mysql-migration-playbook/chap-sql-server-aurora-mysql.security.usersroles.html#chap-sql-server-aurora-mysql.security.usersroles.mysql

Does this mean that auto provisioning cannot be used with Aurora RDS? If anyone has insights or workarounds, I would greatly appreciate your guidance.

Thank you!