I've been working with AWS for a few years now, and I'm often revisiting the topic of secret management. With options like Secrets Manager, Parameter Store, and external solutions such as HashiCorp Vault, it seems there are many 'right' choices depending on the workload scale and use case. Currently, I'm leaning towards using Secrets Manager due to its automated rotation and integration capabilities. However, I've noticed that some teams prefer SSM Parameter Store for its simplicity. For those who manage production environments, I'd love to hear about your most reliable strategies for handling secrets.
5 Answers
Secrets Manager is ideal for secrets that need to be rotated regularly, like database credentials. Parameter Store can be good for simpler things like connection strings, but it doesn’t support automatic rotation on its own.
Yeah, I generally use SSM Parameter Store, but I think Secrets Manager is the better choice despite being pricier.
One of the advantages of Secrets Manager is its support for multi-region replication, which is a game changer for many setups.
For me, Secrets Manager is the default. It has good integration with other tools. I also use SSM Parameter Store for specific cases, but it requires extra caution to ensure secure configurations.
We've standardized on Secrets Manager after experimenting with SSM. Just a heads-up, SSM can be tricky with permissions, so you need to manage access really carefully.
Related Questions
Biggest Problem With Suno AI Audio
Ethernet Signal Loss Calculator
Sports Team Randomizer
10 Uses For An Old Smartphone
Midjourney Launches An Exciting New Feature for Their Image AI
ShortlyAI Review