- Newest
- Most votes
- Most comments
When creating a new RDS secret in AWS Secrets Manager, it usually lists the RDS DB instances for storing credentials. However, read replicas might not be listed due to certain limitations. If your read-only instance is a read replica, this could be why it’s not appearing. In this case, you might need to create a custom secret to store the credentials for your read-only instance. Remember to follow best practices for managing secrets.
Hi Shivinder,
You are essentially right in that you need to create custom secrets to work with read-only RDS instances. Also, while the secrets created for read-write RDS instances are used for many functions including creating backups, read replicas, and other administrative tasks, the secrets for read-only RDS instances are used only for connecting to the database instance and performing read-only queries.
See under Limitations section in https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/rds-secrets-manager.html
Hope this helps,
Regards,
Govardhanan.
Relevant content
- asked a year ago
- Accepted Answerasked a year ago
- asked a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago