By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Are the environment variables used in the task definitions for the ECS service encrypted?

0

Are the environment variables used in the task definitions for the ECS service encrypted?

Topics
Containers
Tags
Amazon Elastic Container Service
Language
English
AWS-User-9314474
asked 8 years ago689 views
2 Answers
1
Accepted Answer

No. Environment variables are not encrypted when viewed through the ECS API, ECS Console, and are also visible on the host itself through docker inspect.

Sam-AWS
answered 8 years ago
-1

By default, ENV variables in your TaskDefinition are NOT encrypted. However, You could use AWS Parameter Store or AWS Secrets manager to encrypt your ENV vars.

kspnec
answered 2 years ago
  • JohnPreston
    2 years ago

    The environment variables exposed to the containers are not encrypted. You might have the source of the value (SSM/SecretsManager) encrypted but not the value of the env var itself to the containers. That defies the purpose. Just clarifying as this is confusing.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content