Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

Single Secret key for multiple RDS instances.

0

I like to know that is it possible in any way to use a single secret key of a user for multiple RDS instances, currently, we can use one secret for one RDS. I want that to be like one to many methodology.

Or else is there any other way to store and rotate the password of a MySQL DB user, like creating an IAM user and that should connect to MySQL, if I change the password of IAM that should reflect in MySQL also.

Themen
Migration und ModernisierungAnalysenDatenbankSicherheit, Identität & Konformität
Tags
Amazon Relational Database ServiceDatenbankAurora MySQLAWS Audit-ManagerAWS Geheimnismanager
Sprache
English
Narayan
gefragt vor einem Jahr290 Aufrufe
1 Antwort
0

Hi, If you decode the secret, you will see that it contains the connection endpoint and dbname the RDS instance. So, it won't work to have one single secret if you have several instances.

For exact content of the secret (when Postgres), see https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_secret_json_structure.html#reference_secret_json_structure_rds-postgres

{
  "engine": "postgres",
  "host": "<instance host name/resolvable DNS name>",
  "username": "<username>",
  "password": "<password>",
  "dbname": "<database name. If not specified, defaults to 'postgres'>",
  "port": "<TCP port number. If not specified, defaults to 5432>"
}
profile pictureAWS
EXPERTE
Didier_Durand
beantwortet vor einem Jahr

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt