Stack Overflow
Stack Overflow

Questions tagged [aws-secrets-manager]

AWS Secrets Manager helps encrypt, store, and retrieve credentials for your databases and other services. Instead of hardcoding credentials in apps, you can make calls to Secrets Manager to retrieve credentials whenever needed. Secrets Manager helps protect access to IT resources and data by rotating and managing access to secrets.

See also: What Is AWS Secrets Manager? - AWS Secrets Manager

864 questions
-1
votes
1 answer

What are the correct resource permissions for AWS Lambda functions using AWS Golang SecretsManager Caching client?

We currently have AWS lambda functions retrieving secrets from the AWS secrets manager using the following resource permissions on the AWS Secret (the lambda function and secret belong to the same AWS account): { "Version" : "2012-10-17", …
tgilino
  • 19
  • 7
-1
votes
1 answer

How to delete AWS Secrets under Secret Manager using AWS CLI which are not retrieved in last 6 months

We create many secrets in AWS secret manager. I need help to know how can i delete all the AWS Secrets (under secret manager) which are not used /retrieved in last 60 days in bulk. I tried to find a AWS CLI command to do so but nothing really…
Mansi Sharma
  • 1
  • 1
-1
votes
1 answer

AWS Secrets Manager cross account

How to access secrets from Secrets manager cross account by friendlyName and NOT the secretARN? Scenario: CMK KMS in AccountA - Key Policy attached for AccountB Secrets stored in AccountA - Resource policy added to AccountB EC2 in AccountB with IAM…
Sou
  • 73
  • 1
  • 2
  • 7
-1
votes
3 answers

How to retrieve secret from cross region AWS Secret Manager in terraform

I am having my EC2 in Dev account and my credentials are in the Security account of AWS, I am trying to retrieve secrets from Secret Manager from my security account, Both EC2 and credentials are in a different region aws secretsmanager…
Akash
  • 31
  • 1
  • 6
-1
votes
1 answer

Granting access to all Lambdas with tag t to a specific secret in AWS Secret Manager

Does anyone know how to enable all lambda with tag 't' get access to a specific secret in AWS secret manager? I have tried even more basic thing like enable all lambda function a read access without success. { "Version": "2012-10-17", …
user2550587
  • 635
  • 6
  • 15
-1
votes
2 answers

How to pass Secrets without hard-coding in cloud formation template/blueprint?

We are having some secrets(external secrets), Not something which is return from cloud formation templates. In that case, we have to pass that secrets in the cloud formation template/blueprint. Is there any alternative rather than giving hardcoded…
Prashanth Kanuka
  • 1
  • 1
-1
votes
2 answers

Amazon secrets manager/ Azure Key Vault for on premise application

When using Key Vault or Secret Manager, is it assumed that the application is deployed on cloud (or) on premise? My assumption is - we use Kay vault, only if our application is getting deployed to cloud, where we need to avoid including service id…
user14734781
-1
votes
1 answer

Mocking a function return value called from main() in unit test

In main.go, I have some code that makes a network call to AWS Secrets manager. func main() { secretName := os.Getenv("DYNAMO_SECRET") credentials, err := getSecret(secretName) if err != nil { logger.Errorf("Failed to retrieve…
Victor Cui
  • 1,393
  • 2
  • 15
  • 35
-1
votes
3 answers

Best way to access AWS Services from docker container

Limitations: I don't want to include my aws config file in docker container I want it to work both on prod and development environment. Things I tried: I used IAM roles but this works only on prod not on development environment. I used aws config…
Emre Bayram
  • 139
  • 2
  • 9
-1
votes
1 answer

Protecting my AWS Secrets from Root Account

I'm creating a ci/cd pipeline in AWS Codepipeline and for this, I created a lot of parameters in AWS SecretManager (github password, dockerhub password, and so on). Well, this secrets are mine (from my personal account) and can't be shared with…
userdevexp
  • 169
  • 2
  • 7
-1
votes
2 answers

How to use secret manager to store database password?

Is it good to have a password for the database which is generated by the secret manager? I am using it this way now. Type: 'AWS::SecretsManager::Secret' Properties: Description: 'Description' GenerateSecretString: SecretStringTemplate:…
Emma W.
  • 215
  • 1
  • 6
  • 20
-2
votes
1 answer

AWS DocumentDB length of password greater than maximum, but shouldn't be

I'm setting up an AWS DocumentDB cluster using CloudFormation. I set up a password in Secrets Manager like this: DbClusterCredentials: Type: AWS::SecretsManager::Secret Properties: Name: … Description: … …
Garret Wilson
  • 18,219
  • 30
  • 144
  • 272
-2
votes
1 answer

Lambda code getting error while accessing secrets manager

I'm pretty new to lambda and python. i got a readymade code from google for an activity by creating Username and Password based SFTP with Lambda as IdP in AWS Transfer Family. I have no clue which field i need to add the values of server id, user,…
usercodditaws test
  • 1
-2
votes
1 answer

How to move secrets from Amazon DynamoDB to AWS Secrets Manager

I am new to AWS and I have some secrets(ClientID and ClientSecrets) stored in dynamodb which I need to move to AWS secrets manager. What is the best way to do this? Automation is a preferred way.
Baba
  • 2,059
  • 8
  • 48
  • 81
-2
votes
1 answer

How to immediately rotate AWS secret using Terraform?

I have created an AWS secret using the aws_secretsmanager_secret resource and have enabled the rotation. Now, if I want to rotate the secret before the automatic rotation time, what is the best way to do this in terraform considering it can be…
Arpit Tomar
  • 187
  • 1
  • 8
1 2 3
57
58