LinuxCommandLibrary

aws-secretsmanager

Store, manage, and retrieve secrets.

TLDR

Show secrets stored by the secrets manager in the current account

$ aws secretsmanager list-secrets
copy


Create a secret
$ aws secretsmanager create-secret --name [name] --description "[secret_description]" --secret-string [secret]
copy


Delete a secret
$ aws secretsmanager delete-secret --secret-id [name_or_arn]
copy


View details of a secret except for secret text
$ aws secretsmanager describe-secret --secret-id [name_or_arn]
copy


Retrieve the value of a secret (to get the latest version of the secret omit --version-stage)
$ aws secretsmanager get-secret-value --secret-id [name_or_arn] --version-stage [version_of_secret]
copy


Rotate the secret immediately using a Lambda function
$ aws secretsmanager rotate-secret --secret-id [name_or_arn] --rotation-lambda-arn [arn_of_lambda_function]
copy


Rotate the secret automatically every 30 days using a Lambda function
$ aws secretsmanager rotate-secret --secret-id [name_or_arn] --rotation-lambda-arn [arn_of_lambda_function] --rotation-rules AutomaticallyAfterDays=[30]
copy

Copied to clipboard