AWS Secrets Manager secrets managed by other AWS services
Many AWS services store and use secrets in AWS Secrets Manager. In some cases, these secrets are managed secrets, which means that the service that created them helps manage them. For example, some managed secrets include managed rotation, so you don't have to configure rotation yourself. The managing service might also restrict you from updating secrets or deleting them without a recovery period, which helps prevent outages because the managing service depends on the secret.
Note
Managed secrets can only be created by the AWS service that manages them.
Managed secrets use a naming convention that includes the managing service ID to help identify them.
Secret name: ServiceID!MySecret Secret ARN : arn:aws:us-east-1:ServiceID!MySecret-a1b2c3
IDs for services that manage secrets
datasync
– How AWS DataSync uses AWS Secrets Managerdirectconnect
– How AWS Direct Connect uses AWS Secrets Managerecs-sc
– Amazon Elastic Container Servicemarketplace-deployment
– AWS Marketplaceopsworks-cm
– How AWS OpsWorks for Chef Automate uses AWS Secrets Managerpcs
– How AWS Parallel Computing Service uses AWS Secrets Managerredshift
– How Amazon Redshift uses AWS Secrets Managersqlworkbench
– Amazon Redshift query editor v2
To find secrets that are managed by other AWS services, see Find managed secrets.
For a full list of services that use secrets, see AWS services that use AWS Secrets Manager secrets.