Secrets Manager integration - Amazon Relational Database Service
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Secrets Manager integration

With Amazon Secrets Manager, you can replace hard-coded credentials in your code, including database passwords, with an API call to Secrets Manager to retrieve the secret programmatically. For more information about Secrets Manager, see Amazon Secrets Manager User Guide.

You can specify that Amazon RDS manages the master user password in Secrets Manager for an Amazon RDS DB instance or Multi-AZ DB cluster. RDS generates the password, stores it in Secrets Manager, and rotates it regularly. For more information, see Password management with Amazon RDS and Amazon Secrets Manager.

Secrets Manager integration is supported for all RDS DB engines and all versions.

Secrets Manager integration is supported in all Amazon Web Services Regions except the following:

  • Canada West (Calgary)

  • Amazon GovCloud (US-East)

  • Amazon GovCloud (US-West)