Resolution
----------

If a rotation function calls a second Lambda function to rotate the secret, the rotation fails with a message similar to the following:

"Pending secret version EXAMPLE1-90ab-cdef-fedc-ba987EXAMPLE for Secret MySecret was not created by Lambda MyRotationFunction. Remove the AWSPENDING staging label and restart rotation."

To resolve this issue, make sure that the code to rotate your secret is contained in a single Lambda function that's set as the rotation function for the secret.

If your Lambda rotation function code failed, see [Why did my Secrets Manager Lambda rotation fail?](https://repost.aws/knowledge-center/secrets-manager-secret-rotation)

Related information
-------------------

[Troubleshoot AWS Secrets Manager rotation](https://docs.aws.amazon.com/secretsmanager/latest/userguide/troubleshoot_rotation.html)  
  
[AWS Secrets Manager rotation function templates](https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_available-rotation-templates.html)

[Rotation by Lambda function](https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_lambda.html)

can you share the lambda rotation function code?

My AWS Lambda function failed to rotate an AWS Secrets Manager secret when it called a second Lambda function.

Resolve Sercrets Manager failed Lambda function rotation

Why did my Lambda rotation function fail when it called a second function to rotate a Secrets Manager secret?

Security, Identity, & Compliance

How to fix dependency errors with Secrets Manager rotation Lambda

Why did my Secrets Manager Lambda rotation fail?

Why did my Lambda rotation function fail when it called a second function to rotate a Secrets Manager secret?

Resolution

Related information

Relevant content