Back to All Checks
Medium SecretsManager Regional

Secrets Manager secrets should be rotated within a specified number of days

NISTISO 27001HIPAA

Description

This control checks whether your secrets are rotated at least once within 90 days. The control fails if you don't rotate your secrets at least this frequently.

Remediation

To ensure secrets are rotated within the specified period, configure automatic rotation and set a rotation schedule that occurs at least every 90 days.

Steps

  1. Go to the AWS Secrets Manager console.
  2. Select the secret and enable automatic rotation.
  3. Choose and configure an AWS Lambda function for rotation.
  4. Set a rotation schedule that occurs at least every 90 days.

Compliance

NISTISO 27001HIPAA
Start Your Free Security Check