AWS Secrets Manager Reviews

Earlier we used to store our secret variables in GitHub, like DB endpoint/password. Which was not secure, and then we started to store it in SSM parameters in Secret Manager. And during build time, we "sed" all the values from SSM parameters to the application code, which made our secret values secure & inaccessible from the outside world.

Nothing much to dislike it, but during code build, we need to give permission to AWS CloudBuild to access Secret Manager and need to write in yaml files all the values which we want to fetch, but it is all process we need to do to make things good. So not a bad thing to dislike it

We used to store our local settings of python / application properties of java files in github only, which was not secure, then we moved to use Secret manager to make it private and only accessible by those who have access.

AWS Secrets Manager is a service provided by Amazon cloud platform to store, retrieve and rotate our credentials. We employ it for our database passwords, API keys, and other secrets to manage our password lifecycle. Instead of hardcoding our passwords in the code, we can easily reference our secrets which are securely stored in our Secrets Manager.

AWS Secrets Manager gives me the convenience to hold multiple versions of my credentials through its staged labels. It also allows me to maintain access priviledges when I define my IAM policies. No dislike with anything related to its service in our AWS environment.

We establish the external secrets of our EKS clusters using AWS Secrets Manager. Secrets Manager's configuration is convenient thanks to our AWS CLI environment, which has plenty of programmatic capabilities. Backend password configurations are compatible, and it allows external secrets to be stored in our Secrets Manager. We can also give strict access privilege definitions while working with production environments to enhance credential security.

It is to store and rotate secrets securely. I no need to manage any infrastructure to manage secrets.

its also monitor, and control access to secrets of lot of API's.

Its server with Easy management

As a new user I can not use whole functions for product also its a very expensive

Its amazing Product but Cost is very high for Start ups

We can save our secret data in clouds

It meets all our security and compliance requirements

It can also store binary data and OAuth credentials

Pay as you go which is great

Integrate with other AWS services and provide easy security auditing

server-less and Easy management

Customize lambda function for time-based credential rotations

as a new user, Little hard to find options in places but it could be just me

Cloud based security/credential management

The ability to audit and to have an audit trail available is a key component for any large scale business especially any business that deals with strict regulations.

Secrets managers often complain of the lack of support on a larger scale.

Key buisness IT issues are spread globally to help our different facilities coordinate and AWS helps control our fluctuating environment.

The ability to audit and to have an audit trail available is a key component for any large scale business especially any business that deals with strict regulations.

Secrets managers often complain of the lack of support on a larger scale.

What problems are you solving with the product? What benefits have you realized?

It meets all our security and compliance requirements

It can also store binary data and OAuth credentials

Pay as you go which is great

Integrate with other AWS services and provide easy security auditing

server-less and Easy management

Customize lambda function for time-based credential rotations

as a new user, Little hard to find options in places but it could be just me

What problems are you solving with the product? What benefits have you realized?

It is to store and rotate secrets securely. I no need to manage any infrastructure to manage secrets.

its also monitor, and control access to secrets of lot of API's.

Its server with Easy management

As a new user I can not use whole functions for product also its a very expensive

Recommendations to others considering the product:

What problems are you solving with the product? What benefits have you realized?

We can store , rotate, monitor, and control access to secrets of lot of API's.This is great tool to hide lot of confidential information which is sensitive to business.Good thing is lot of API can restored with cheaper prices and we can manage all keys in one central repository.

Even though it has great features some times I feel its difficult to permission for certain factors and its difficult to estimate the cost.

Recommendations to others considering the product:

What problems are you solving with the product? What benefits have you realized?

We can store , rotate, monitor, and control access to secrets of lot of API's.This is great tool to hide lot of confidential information which is sensitive to business.Good thing is lot of API can restored with cheaper prices and we can manage all keys in one central repository.

Even though it has great features some times I feel its difficult to permission for certain factors and its difficult to estimate the cost.

Strongly recommended product.

Using this, we have stored some keys used for APP and related configuration information. This is useful to manage all information is single place which is really important to any applications.