Open menu

AWS SecretsManager Best Practices

Cloud Conformity checks Amazon SecretsManager service according to the following rules:

Enable AWS Secrets Manager Secrets Rotation
Ensure that automatic rotation is enabled for your Amazon Secrets Manager secrets.

AWS Secrets Manager Rotation Interval
Ensure that Amazon Secrets Manager automatic rotation interval is properly configured.

AWS Secrets Manager Data Encrypted with KMS CMKs
Ensure that AWS Secrets Manager service enforces data-at-rest encryption using KMS CMKs.