Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Use Amazon Secrets Manager secrets in Amazon Lambda functions

Amazon Lambda is a serverless compute service that lets you run code without provisioning or managing servers. Parameter Store, a capability of Amazon Systems Manager, provides secure, hierarchical storage for configuration data management and secrets management. You can use the Amazon Parameters and Secrets Lambda Extension to retrieve and cache Amazon Secrets Manager secrets and Parameter Store parameters in Lambda functions without using an SDK. For detailed information about using this extension, see Use Secrets Manager secrets in Lambda functions in the Lambda Developer Guide.

Using Secrets Manager secrets with Lambda

The Lambda Developer Guide provides comprehensive instructions for using Secrets Manager secrets in Lambda functions. To get started:

Using Secrets Manager and Lambda in a VPC

If your Lambda function runs in a VPC, you need to create a VPC endpoint so that the extension can make calls to Secrets Manager. For more information, see Using an Amazon Secrets Manager VPC endpoint.

Using the Amazon Parameters and Secrets Lambda Extension

The extension can retrieve both Secrets Manager secrets and Parameter Store parameters. For detailed information about using Parameter Store parameters with the extension, see Using Parameter Store parameters in Lambda functions in the Amazon Systems Manager User Guide.

The Systems Manager documentation includes: