In a typical Internet company, the people who really need to deal with databases are far more than DBA. The marketing department needs to look at the channel conversion data, the operation needs to pull the user grouping table, the product manager needs to check the function utilization rate, and even the finance and customer service will occasionally need to get some data from the database.
But these people can't write SQL. As a result, a workflow that everyone is accustomed to has formed: demand raising → queuing → DBA or analyst helping to run → waiting for results → finding the wrong caliber → another round. A query that could have produced results in 10 seconds took three days in the organizational process.
The root of the problem is not that there are not enough efficiency tools, but that the way the database interacts has hardly changed since its birth-it only recognizes SQL, not human words.
RDSClaw's database management function is precisely to break this threshold: you can securely hand over your database to AI agents so that everyone can directly obtain data in natural language.
"Nanomanuis" sounds like a technical term, but what it does is very straightforward: let RDSLaw's AI agents safely "know" your database and know how to connect, what they can and can't do. Specifically, the management accomplishes three things:
The entire process is completed in the RDSClaw Web console. You do not need to write a single line of code or change any database configurations.
On the Database Management page of the RDSClaw console, click Add Connection and enter the following information:
| Parameter | Required | Description |
|---|---|---|
| Connection ID | Required | The unique identifier of the connection, such as prod-mysql. |
| Database Type | Required | Select the database type: MySQL, PostgreSQL, SQL Server, or MariaDB. |
| Host | Required | The host address of the database. |
| Port | Optional | The port number. If you leave this parameter empty, the default port of the database is used. |
| Database | Required | The name of the database. |
| Username | Required | The username of the database. |
| Password | Required | Database password. Stored with encryption. |
| Read-only | Optional | If selected, only read operations are allowed. We recommend using read-only mode in production environments. |
After you click Save, the system automatically performs three steps:
The entire process is usually completed within 10 seconds. To manage multiple database connections? Repeat the preceding steps. RDSClaw allows you to manage multiple database connections at the same time. You can use the connection ID to switch between database connections.
"Let AI directly operate my production database?" -This is the first reaction of every technical director when he hears the database management. RDSLaw's security design principles are: Trust but verify, decentralization but cover the bottom.
| Operation Type | Read-only Mode Behavior | Read/Write Mode Behavior |
|---|---|---|
| SELECT Query | Execute directly and return the result. | Execute directly and return the result. |
| Write operations such as INSERT, UPDATE, and DELETE | Deny directly; the agent shows a no-permission tooltip | Generate SQL + impact estimation → Wait for user confirmation → Execute after confirmation |
The design logic of this mechanism is clear:
• Zero query threshold: Read operations do not change data. You can query data in natural languages.
• Write operations are confirmed: The agent does not perform write operations without authorization. It will first tell you "I am going to execute this SQL, which is expected to affect N lines", and you will not actually submit it until you click "confirm" in the approval window.
Previous process: ask for data group → wait 2 days → get Excel → find one dimension missing → wait another day.
🦞Now the process:
Xiao Li (DingTalk group): Check the number of newly registered users in each channel last week, split by day, and sort them in descending order.
[RDSClaw parsing intent → select managed user-db-prod connection → generate SQL → read-only mode safe execution]
[Return to structured table + automatically call visualization skills to generate trend line chart]
Xiao Li: What about the retention rate?
[RDSClaw understands that "add" means append dimension → generate new SQL statement → return updated analysis based on context memory]
Key point: Xiao Li did not write a single-character SQL statement during the whole process, nor did he need to know the name of the table. The database runs in read-only mode, and there is no risk of misoperation.
Previous procedure: Log on to the console → Check the CPU /memory /connections /slow query one by one → Take a screenshot → Write an inspection report → Send an email. Take 40 minutes.
🦞Now the process:
Lao Wang (Web UI): Please help me inspect the prod-mysql, focusing on slow query and lock waiting.
[RDSClaw accesses the database through a managed connection → calls intelligent O&M skills → checks 12 metrics → returns a structured report in 2 minutes]
RDSClaw: the inspection is complete. Two slow queries are found: the order_detail table has a full table scan. We recommend that you add a joint index (user_id, create_time). The status field of the payment_log table has a low degree of differentiation. We recommend that you use a covering index instead. The remaining indicators are normal.
Generate the DDL statements for these two indexes.
[RDSClaw generates an ALTER TABLE statement → Label the estimated execution time and lock impact → Wait for confirmation]
Key point: management gives operation and maintenance skills a "focus"-Agent is not talking about theory, but really connecting your library to do analysis.
Previous process: Look at the error log → guess which table it is → ask DBA for help → DBA is busy → etc.
🦞Now the process:
Xiao Chen (Enterprise WeChat): Has the user_session table in prod-mysql increased recently? Help me check the number of rows per day in the last seven days.
[RDSClaw automatically queries and returns the number of rows per day]
RDSClaw: the number of rows in the user_session table in the last seven days: Monday 120000, Tuesday 130000, Wednesday 110000, Thursday 450000 (abnormal), Friday 480000, Saturday 460000, and Sunday 440000. There has been a significant jump since Thursday, with suspected batch writing.
Xiao Chen: Check the data added on Thursday. What are the values of the source field?
[RDSClaw automatically adds time conditions based on context → Execute aggregate query → Return result]
Key point: Developers can quickly locate data-level problems without waiting for DBA scheduling. Agent's lasting memory makes multiple rounds of questioning as natural as talking to people.
Previous process: find two groups of people to run the number of times respectively → merge them manually in Excel → not right → re-calibrate.
🦞Now the process:
Director of Operations (Feishu): Please help me check the GMV of last month from order-db-prod and the number of active users from user-db-prod.
[RDSClaw switches two managed connections in sequence → query separately → integrate and return]
RDSClaw: GMV last month: 12.34 million yuan (order-db-prod); Active users last month: 89,432 (user-db-prod). The per capita contribution is about 138 yuan.
Key point: Multi-database management makes cross-database queries as easy as switching chat windows. The permissions of each connection are controlled independently and do not affect each other.
Scenario: You need to clear expired session data that is older than 90 days. This is a write operation that requires the highest level of security.
Procedure:
Lao Wang (Web UI): Help me delete the created_at records that are older than 90 days in the user_session table.
[RDSClaw generates a DELETE statement → displays the SQL text + estimated number of affected rows]
RDSClaw: is about to execute: DELETE FROM user_session WHERE created_at < DATE_SUB(NOW(), INTERVAL 90 DAY). It is expected to affect 128,756 rows. Confirm execution?
Lao Wang: I confirm.
[Execution Completed → Return the actual number of deleted rows and duration]
RDSClaw: executed. The actual deletion of 128,756 rows took 3.2 seconds.
Key point: Every step of the write operation is under your control-the agent displays the SQL, estimates the impact, waits for your confirmation, and reports the results.
By default, the production database is read-only. Create a dedicated read-only database account for the Agent and select the Read-only option. The write permission is not required in most business data retrieval and routine inspection scenarios.
Create different connections for different purposes. A library can manage multiple connections: prod-mysql-readonly for business personnel and developers, prod-mysql-rw only for DBAs. The permissions boundary is distinguished by the connection ID.
Security groups follow the minimum open principle. Only the database port and IP segment that the Agent needs to access are opened. The inbound and outbound rules are configured separately.
Make good use of IM integration to expand coverage. Connect RDSClaw Bot to DingTalk /Flying Book /Enterprise after WeChat group, team members can check data without logging in to the console. The configuration method is extremely lightweight-just enter the relevant credentials in the console.
Regular observability center review. View session records, token consumption, and security events to understand agent usage and potential risks, and continuously optimize management policies.
For a long time, the database has been like a vault where only a few people hold the keys-DBAs guard the door and business people line up outside to deliver notes. The cost of this model in terms of efficiency and cost is well known to everyone, but it is used to it.
RDSClaw's database management is essentially a change of lock: "only people who can write SQL can enter" to "one word can enter, but every step of the operation has a safety fence".
It allows colleagues in the marketing department to get the data in 10 seconds, so that developers do not have to wait in line for DBA, so that DBA can release their energy from repetitive work to do more valuable architectural work. The prerequisite for all of this- security, from credential encryption to read /write control to secondary confirmation - is that RDSLaw ensures layers of security.
You do not need to understand SQL, do not need to wait for scheduling, and do not need to worry about security. Tell me what you want and RDSClaw will help you.
PolarDB-X Snapshots: The " Undo Button" for Agent-Operated Data
ApsaraDB RDS Debuts RDSHermes: Empowering Database AI Agents to Evolve Autonomously
ApsaraDB - June 4, 2026
Alibaba Cloud Native Community - May 25, 2026
Alibaba Cloud Native Community - April 13, 2026
Alibaba Cloud Native Community - October 22, 2025
Alibaba Cloud Native Community - June 5, 2026
Alibaba Cloud Native Community - March 19, 2026
Alibaba Cloud Model Studio
A one-stop generative AI platform to build intelligent applications that understand your business, based on Qwen model series such as Qwen-Max and other popular models
Learn More
Database for FinTech Solution
Leverage cloud-native database solutions dedicated for FinTech.
Learn More
Oracle Database Migration Solution
Migrate your legacy Oracle databases to Alibaba Cloud to save on long-term costs and take advantage of improved scalability, reliability, robust security, high performance, and cloud-native features.
Learn More
Database Migration Solution
Migrating to fully managed cloud databases brings a host of benefits including scalability, reliability, and cost efficiency.
Learn MoreMore Posts by ApsaraDB