ssm secret password automation in aws

0

please can you advice how can we automatic Secret,password store in parameter store to make process fully automatic and use cli to retrieve

質問済み 2年前946ビュー
2回答
0

Thank you for answering to that .

The question is how can we automat the process

回答済み 2年前
  • could you elaborate more details about the process you mentioned?

0

Hello,

If you need to automate the rotation of credentials, then AWS Secrets Manager would be a better fit as it has this feature included. For examples, see the following two blog posts:

Rotate Amazon RDS database credentials automatically with AWS Secrets Manager How to use AWS Secrets Manager to rotate credentials for all Amazon RDS database types, including Oracle

You can then integrate Secrets Manager with Parameter Store so that you can retrieve Secrets Manager secrets when using other AWS services that already support references to Parameter Store parameters.

You can use the AWS Command Line Interface (AWS CLI), AWS Tools for Windows PowerShell, and the SDKs to retrieve a secret by using Parameter Store. Example CLI command:

aws ssm get-parameter \
    --name /aws/reference/secretsmanager/s1-secret:11111-aaa-bbb-ccc-123456789 \
    --with-decryption

For more information, see Referencing AWS Secrets Manager secrets from Parameter Store parameters .

Systems Manager Parameter Store does not include automatic rotation and would need to be customized. Although Advanced Parameters in Parameter Store do allow you to specify an expiration and expiration notification policy, for more information see Assigning parameter policies.

AWS
Erik_W
回答済み 2年前

ログインしていません。 ログイン 回答を投稿する。

優れた回答とは、質問に明確に答え、建設的なフィードバックを提供し、質問者の専門分野におけるスキルの向上を促すものです。

質問に答えるためのガイドライン

関連するコンテンツ