AWS Secrets Manager

aws/security aws/service aws/compliance

💡 Definition

AWS Secrets Manager helps you protect access to your applications, services, and IT resources. It enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

🔑 Key Concepts

⚙️ How it Works

You store your secrets in Secrets Manager. For database credentials, you can configure automatic rotation. When an application needs a secret, it makes an API call to Secrets Manager, which retrieves the secret (after successful IAM authentication and authorization) and delivers it to the application. This ensures that secrets are never hardcoded and are rotated regularly.

🎯 Use Cases

💰 Pricing Model

📝 Exam Tips (CLF-C02)


See Also: * IAM * KMS * AWS Systems Manager (Parameter Store is a simpler secret management service) * RDS