Amazon Elastic Container Service - Amazon Secrets Manager
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Amazon Elastic Container Service

Amazon Elastic Container Service (Amazon ECS) is a fully managed container orchestration service that helps you easily deploy, manage, and scale containerized applications. You can inject sensitive data into your containers by referencing Secrets Manager secrets. For more information, see the following pages in the Amazon Elastic Container Service Developer Guide:

Amazon ECS supports FSx for Windows File Server volumes for containers. Amazon ECS uses the credentials stored in a Secrets Manager secret to domain join the Active Directory and attach the FSx for Windows File Server file system. For more information, see Tutorial: Using FSx for Windows File Server file systems with Amazon ECS and FSx for Windows File Server volumes in the Amazon Elastic Container Service Developer Guide.

You can reference container images in private registries outside of Amazon that require authentication by using a Secrets Manager secret with the registry credentials. For more information, see Private registry authentication for tasks in the Amazon Elastic Container Service Developer Guide.

When you use Amazon ECS Service Connect, Amazon ECS uses Secrets Manager managed secrets to store Amazon Private Certificate Authority TLS certificates. The cost of storing the secret is included with the charges for Amazon ECS. To update the secret, you must use Amazon ECS rather than Secrets Manager. For more information, see TLS with Service Connect in the Amazon Elastic Container Service Developer Guide.