Find answers, ask questions, and connect with our
community around the world.

Home Forums AWS AWS Certified Solutions Architect Professional Database credentials if in AWS Secrets Manager Reply To: Database credentials if in AWS Secrets Manager

  • TutorialsDojo-Support

    June 25, 2020 at 8:01 pm

    Hello Joseph,

    Thank you for your feedback.

    AWS Secrets Manager service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle. Using Secrets Manager, you can secure and manage secrets used to access resources in the AWS Cloud, on third-party services, and on-premises.

    You can enable your on-premises servers to access Secrets Manager is you use IAM access keys that allow the servers to call Secrets Manager API to retrieve and decrypt the secret that your save.

    Services on AWS such as EC2, ECS, and Fargate can also access AWS Secret Manager. You need to create an IAM role attached to EC2 or ECS that allows them to retrieve the secrets on Secrets Manager. The IAM role attached to the EC2 will allow the application to call Secrets Manager API. For ECS, you can attach the appropriate IAM role and you can retrieve the secrets on Secret Manager by declaring the variables on the Task Definition.

    Configure IAM on your EC2 or ECS to allow getting parameters from SSM

    Hope this helps.


    Kenneth Samonte @ Tutorials Dojo