By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Single Secret key for multiple RDS instances.

0

I like to know that is it possible in any way to use a single secret key of a user for multiple RDS instances, currently, we can use one secret for one RDS. I want that to be like one to many methodology.

Or else is there any other way to store and rotate the password of a MySQL DB user, like creating an IAM user and that should connect to MySQL, if I change the password of IAM that should reflect in MySQL also.

Topics
Migration & ModernizationAnalyticsDatabaseSecurity, Identity, & Compliance
Tags
Amazon Relational Database ServiceDatabaseAurora MySQLAWS Audit ManagerAWS Secrets Manager
Language
English
Narayan
asked 10 months ago276 views
1 Answer
0

Hi, If you decode the secret, you will see that it contains the connection endpoint and dbname the RDS instance. So, it won't work to have one single secret if you have several instances.

For exact content of the secret (when Postgres), see https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_secret_json_structure.html#reference_secret_json_structure_rds-postgres

{
  "engine": "postgres",
  "host": "<instance host name/resolvable DNS name>",
  "username": "<username>",
  "password": "<password>",
  "dbname": "<database name. If not specified, defaults to 'postgres'>",
  "port": "<TCP port number. If not specified, defaults to 5432>"
}
profile pictureAWS
EXPERT
Didier_Durand
answered 10 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content