Security > Secret Store: Store and Access Secrets on the Cloud Appliance
Create and manage secret keys stored in AWS to securely store encryption keys and site data. To add a secret store, select the store from the dropdown, and then click Add Store. Provide and save the information for the store as shown in the steps below.
Add AWS Secret Store
- Provide the Access Key ID, Secret Access Key, and Region.
- Check the Rotate Access Key box only if you are not using any of the same IAM user's credentials in any other system.
- Click Save Store.
- It is also necessary for any firewall to allow outbound traffic to the IP addresses associated with the region endpoint used for the secret store.
IP addresses may change. Please see the current list of IP addresses at AWS IP address ranges.
For the list of endpoints, please see AWS Secrets Manager endpoints and quotas.
- DescribeSecret
- GetSecretValue
- TagResource
- UntagResource
- CreateSecret
- DeleteSecret
- UpdateSecret
For more information on managing AWS IAM Policies, see Managing IAM Policies.
If you delete the last remote store, a message displays indicating secrets will be moved locally.