AWS Secrets Manager Integration

The AWS Secrets Manager integration enables Axonius to securely pull privileged credentials from AWS Secrets Manager. The integration ensures that privileged credentials are secured in the AWS Secrets Manager, rotated to meet company guidelines, and meet complexity requirements.

Enable AWS Secrets Manager Integration

Enable AWS Secrets Manager integration and allow to Axonius to securely pull privileged credentials from the AWS Secrets Manager.
Follow the guidelines in External Password Managers - Enterprise Password Management Settings.

Working with AWS Secrets Manager

Once the AWS Secrets Manager integration is enabled in Axonius, a new AWS Secrets Manager icon will appear in all password fields when configuring adapters or configuring Enforcement sets, allowing you to enter a password manually or to fetch the secret from AWS Secrets Manager.

To fetch the password from AWS Secrets Manager:

1. In a password field, click the AWS Secrets Manager icon. If you have configured more than one password manager, click the vault icon and select AWS from the drop-down.
   The AWS Secrets Manager dialog opens.

2. In the dialog, specify the following parameters:
   1. Secret name (required) - Specify the secret containing the secret key that you want to retrieve. You can specify either the Amazon Resource Name (ARN) or the friendly name of the secret
   2. Secret key (required, default: Password) - Specify the unique identifier of the secret that you want to retrieve.
3. Click Fetch.
   • If the fetch is successful, a green indication will be displayed next to the AWS Secrets Manager icon.
   • If the fetch is unsuccessful, a red indication will be displayed next to the AWS Secrets Manager icon. Hovering over the AWS Secrets Manager icon will show the error.