Secrets Manager secrets should have automatic rotation enabled

이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

This control verifies whether secrets stored in AWS Secrets Manager are set up for automatic rotation. The control will fail if the secret is not configured to rotate automatically.

AWS Secrets Manager enhances the security of your organization by allowing you to centrally store, automatically encrypt, and control access to sensitive information such as database credentials, passwords, and third-party API keys. Additionally, Secrets Manager supports automatic rotation of secrets, which helps replace long-term secrets with short-term ones, reducing the risk associated with compromised secrets. Regular rotation of secrets is recommended to minimize the potential impact of unauthorized access. For more details on rotating secrets, refer to the AWS Secrets Manager User Guide.

Remediation

For guidance on enabling automatic rotation for secrets, please refer to the Rotating your AWS Secrets Manager secrets section in the AWS Secrets Manager User Guide.

PREVIEWING: brett.blue/embedded-collector-release