Difference between revisions of "AWS Secrets Manager"

Latest revision as of 09:25, 17 June 2024

wikipedia:AWS Secrets Manager (April 2018) ^[1]

Homepage: https://aws.amazon.com/secrets-manager/
Free tier: 30 days

Secrets rotation featured:

Amazon Aurora on Amazon RDS
MySQL on Amazon RDS
PostgreSQL on Amazon RDS
Oracle on Amazon RDS
MariaDB on Amazon RDS
Microsoft SQL Server on Amazon RDS

Related terms[edit]

Private key
AWS Manage policy:
- SecretsManagerReadWrite
- secretsmanager:GetSecretValue
AWS Config
AWS CloudFormation
AWS Systems Manager Parameter Store (Dec 2016)
AWS Fargate
Terraform resource: aws_secretsmanager_secret
Terraform resource: aws_secretsmanager_secret_version
Terraform secretsmanager
secrets =
AWS Lambda

@@ Line 3: / Line 3: @@
 * [[Free tier]]: 30 days
-Secrets rotation feautured:
+[[Secrets rotation]] featured:
 * [[Amazon Aurora]] on Amazon RDS
 * [[MySQL]] on Amazon RDS
@@ Line 10: / Line 10: @@
 * MariaDB on Amazon RDS
 * Microsoft SQL Server on Amazon RDS
+=== Secret Types ===
+* [[AWS credentials]]: AWS Identity and Access Management ([[IAM]])
+* [[Encryption]] keys: [[KMS]]
+* [[SSH]] keys
+* [[Private keys]] and [[certificates]]
+=== Automatic Rotation ===
+* [[Granular control]]: Define custom rotation schedules (e.g., daily, weekly).
+* Integration with [[AWS Lambda]]: Automate tasks during rotation, such as notifying admins or updating dependent systems.
+=== Fine-grained Access Control ===
+* [[IAM policies]]: Define granular permissions for different users and applications(e.g., view only vs. read/write).
+* [[Secret versions]]: Maintain a history of past versions.
+=== Audit and Monitor Secrets Usage ===
+* Integration with [[AWS CloudTrail]]: Logs API calls to Secrets Manager, eg: <code>[[GetSecretValue]]</code>
+* [[CloudWatch]] integration
 == Related terms ==
 * [[Private key]]
-* AWS Manage policy: <code>[[SecretsManagerReadWrite]]</code>
+* AWS Manage policy:
+** <code>[[SecretsManagerReadWrite]]</code>
+** <code>[[secretsmanager:GetSecretValue]]</code>
 * [[AWS Config]]
 * [[AWS CloudFormation]]
 * [[AWS Systems Manager Parameter Store]] (Dec 2016)
 * [[AWS Fargate]]
+* [[Terraform resource: aws_secretsmanager_secret]]
+* Terraform resource: <code>[[aws_secretsmanager_secret_version]]</code>
+* [[Terraform secretsmanager]]
+* <code>[[secrets =]]</code>
+* [[AWS Lambda]]
 == Activities ==
 * Read https://aws.amazon.com/secrets-manager/faqs/
 * Read Fargate with [[Secret Manager]] https://awscloudsecvirtualevent.com/workshops/module4/fargate/
+* [https://docs.aws.amazon.com/secretsmanager/latest/userguide/hardcoded.html Move hardcoded secrets to AWS Secrets Manager]
+* [https://docs.aws.amazon.com/secretsmanager/latest/userguide/hardcoded-db-creds.html Move hardcoded database credentials to AWS Secrets Manager]
+* [https://docs.aws.amazon.com/secretsmanager/latest/userguide/tutorials_rotation-alternating.html Set up alternating users rotation for AWS Secrets Manager]
+* [https://docs.aws.amazon.com/secretsmanager/latest/userguide/tutorials_rotation-single.html Set up single user rotation for AWS Secrets Manager]
+* [https://docs.aws.amazon.com/secretsmanager/latest/userguide/cfn-example_secret.html Create an AWS Secrets Manager secret with AWS CloudFormation]
 == See also ==
 * {{aws secretsmanager}}
 * {{Secrets}}
-* {{AWS security}}
 [[Category:AWS]]

Difference between revisions of "AWS Secrets Manager"

Latest revision as of 09:25, 17 June 2024

Contents

Secret Types[edit]

Automatic Rotation[edit]

Fine-grained Access Control[edit]

Audit and Monitor Secrets Usage[edit]

Related terms[edit]

Activities[edit]

See also[edit]

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Tools