Austin's SWE Notes 😭

    SSM Parameter Store Vs Secret Manager

    AWS SSM Parameter StoreAWS Secrets Manager
    Automatic rotation of secretNo automatic rotation
    KMS is mandatoryKMS is optional
    Seamlessly integrate with RDS, Redshift, DocumentDB, CloudFormationIntegrate with CloudFormation
    Can Pull AWS Secrets Manager secret using API

    Integration with RDS For example

    AWS Secrets Manager (Newer)

    Pasted image 20221020141800.png
    Write an AWS Lambda function (AWS Provided) to trigger change password for RDS

    SSM Parameter store

    Pasted image 20221020142107.png
    Use CloudWatch Events to invoke a custom AWS Lambda to change passwords in both RDS and SSM Parameter Store

    ← Envelope Encryption
    AWS Step Functions Error Handling →