This project automates secret key rotation in AWS Secrets Manager using an AWS Lambda function. The function periodically generates and updates secrets, ensuring enhanced security without manual intervention.
The function will handle the secret rotation logic, including generating a new key, updating the secret, and configuring the old key for expiration.
Define the secret that needs to be rotated and set the rotation schedule (e.g., every 30 days).
Ensure the Lambda function has appropriate permissions to read, update, and rotate secrets.
Secrets Manager will automatically trigger the Lambda function based on the defined schedule.
The function will update the secret value in AWS Secrets Manager, ensuring the new key is in use while invalidating the old one.
- Enhanced Security: Regularly rotates secrets to minimize security risks.
- Automation: Eliminates manual secret updates.
- AWS Integration: Uses AWS-native services for seamless operation.
After 1st Rotation
After 2nd Rotation
This project is licensed under the MIT License.