Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Single Secret key for multiple RDS instances.

0

I like to know that is it possible in any way to use a single secret key of a user for multiple RDS instances, currently, we can use one secret for one RDS. I want that to be like one to many methodology.

Or else is there any other way to store and rotate the password of a MySQL DB user, like creating an IAM user and that should connect to MySQL, if I change the password of IAM that should reflect in MySQL also.

Temas
Migración y modernizaciónAnálisisBase de datosSeguridad, identidad y cumplimiento
Etiquetas
Amazon Relational Database ServiceBase de datosAurora MySQLAWS Audit ManagerAWS Secrets Manager
Idioma
English
Narayan
preguntada hace un año290 visualizaciones
1 Respuesta
0

Hi, If you decode the secret, you will see that it contains the connection endpoint and dbname the RDS instance. So, it won't work to have one single secret if you have several instances.

For exact content of the secret (when Postgres), see https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_secret_json_structure.html#reference_secret_json_structure_rds-postgres

{
  "engine": "postgres",
  "host": "<instance host name/resolvable DNS name>",
  "username": "<username>",
  "password": "<password>",
  "dbname": "<database name. If not specified, defaults to 'postgres'>",
  "port": "<TCP port number. If not specified, defaults to 5432>"
}
profile pictureAWS
EXPERTO
Didier_Durand
respondido hace un año

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante