AWS Secrets storage hierarchy

kam · October 21, 2019, 11:06am

Hi,
How can we ensure that the storage hierarchy of the secrets in AWS secrets management is maintained when we move those secrets to Conjur?
Thank you!

nathan.whipple · October 23, 2019, 1:30am

Hi kam,

Can you elaborate more on the hierarchy you’re using in AWS Secrets manager?

-Nate

kam · October 23, 2019, 1:46am

Hi Nate,
Here is an example of hierarchy in AWS secrets manager.

Secrets used by ALL service in the platform:
Secrets used by all Services in a Domains: /
Secrets used by a specific service in that domain: //

During DAP migration, can we maintain this hierarchy? Another question along the same lines: Can we have access control based on hierarchy. If access is on the parent, can we lock down access on child and vice versa?

Also do you have experience with AWS secrets migration to DAP? It would be greatly appreciated if you could share your recommendations/do’s/don’t’s.

Thank you!

Topic		Replies	Views
AWS IAM Authenticator Tutorial For Conjur Open Source Secrets Management - Conjur, Secrets Hub & CP	0	689	June 26, 2020
How a Stateless Cloud Native Application can Access Vaulted Secrets with IAM Authentication Secrets Management - Conjur, Secrets Hub & CP	1	346	March 12, 2021
Secure secrets in Bitbucket using DAP-Conjur Secrets Management - Conjur, Secrets Hub & CP	5	233	October 7, 2022
Hosting options Centralized secrets manager Secrets Management - Conjur, Secrets Hub & CP	0	237	September 30, 2021
Using AWS KMS for encrypting DAP Master Conjur Enterprise	18	1744	December 7, 2020

AWS Secrets storage hierarchy

Related Topics