AWS Secrets Manager
Easily rotate, manage, and retrieve secrets like database credentials and API keys throughout their lifecycle.
Pricing Model
Pay per secret and per API call
Rotation
Automatic and scheduled
About AWS Secrets Manager
AWS Secrets Manager allows you to replace hardcoded credentials in your code, including passwords, with an API call to Secrets Manager to retrieve the secret programmatically. The service helps you meet your security and compliance requirements by enabling you to rotate secrets automatically on a schedule you determine. It offers fine-grained access control using AWS IAM and integrates with AWS logging and monitoring services like CloudTrail and CloudWatch for robust auditing. Secrets Manager supports a wide range of AWS services, including Amazon RDS, Amazon Redshift, and Amazon DocumentDB, allowing for automated credential rotation without disrupting applications.
Core Features
Automatic Secrets Rotation
Automatically rotate secrets on a schedule for databases, API keys, and other credentials without code deployments.
Fine-Grained Access Control
Control access to secrets using AWS Identity and Access Management (IAM) policies.
Auditing And Monitoring
Integrates with AWS CloudTrail to log all API calls and AWS CloudWatch for monitoring.
Programmatic Access
Retrieve secrets with a simple API call, eliminating the need to hardcode sensitive information.
Integrations
Aws Database Services
Amazon RDS, Amazon DocumentDB, and Amazon Redshift.
Identity And Access
AWS Identity and Access Management (IAM).
Monitoring
AWS CloudTrail, Amazon CloudWatch, AWS Audit Manager.