Skip to content

Secrets Manager

Links: 101 AWS SAA Index
Recommended Reads: SSM Parameter Store vs Secrets Manager


  • It is a newer service and came out after SSM parameter store
  • The sole purpose is to store secrets.
  • We have the capability to force rotation of secrets every X days. This cannot be done with SSM Parameter Store.

    - Automatic rotation is done with the help of a lambda function.

  • Automate the generation of secrets on rotation (uses lambda)
  • Secrets are encrypted using KMS
  • Integration with AWS RDS.
Mostly meant for secrets RDS integration and rotation
Whenever you see the word rotated with secrets always go with Secrets Manager over SSM Parameter Store.

Last updated: 2022-06-01