From the course: Cloud Data, Platform, and Applications Security by Pearson

Unlock this course with a free trial

Join today to access over 25,200 courses taught by industry experts.

Secrets management

Secrets management

From the course: Cloud Data, Platform, and Applications Security by Pearson

Start my 1-month free trial Buy for my team

Secrets management

In this lesson, I'm going to do a web safari up to a very popular solution at Amazon Web Services called the Secrets Manager. As you can see here, this is a place to come to centrally manage the lifecycle of your secrets. So you can securely encrypt and centrally audit secrets, for example, things that are used in your database credentials, are whether it's data warehousing or relational databases or NoSQL, also API keys. So you can manage, access, and have fine-grained policies. And these can actually be done as resource-based policies from a service we looked at earlier on, IAM. You can rotate secrets automatically and help you become compliant, for example, to mandates or regulations. replicate secrets to support disaster recovery, for example. So if we scroll down here, we'll see a diagram of kind of how it works. So the Secrets Manager tool, when you have code, or you have Lambda functions, or some container, instead of embedding those secrets into the microservice, or the…

Contents