AWS Systems Manager Parameter Store

  • Component of AWS Systems Manager(ASM).
  • Secure serverless storage for configuration and secrets
  • Passwords
    • Database connection strings
    • License codes
    • API keys
  • values can be stored encrypted(KMS) or plaintext.
  • Separate data from source control.
  • Store parameters in hierarchies.
  • Track Versions
  • Set TTL to expire values such as passwords.
  • Use get parameters by path API call to retrive all parameters in a hierarchy.
    • /dev gives entire hierarchy under dev path
  • We can use parameter store in our cloud formation templates.
  • boto3 is aws SDK for python.
  • When we need to store parameters of a system.
  • This information needs to be passed to your EC2 instances, is as a bootstrap script.
  • For example, system administrator for a bank may need to store parameters used by the applications like license keys, database connection, information, user names and passwords, etc.
  • This information needs to be passed to you are EC2 instances as a bootstrap Script.
  • You maintain the confidentiality of the information and avoid hard coding parameters in your code.
  • Store confidential information
    • You can store passwords, database connection, strings, license codes, etc.
  • Plaintext or Encrypt it
    • We can store values as plain text or encrypt them.
  • Reference
    • We can reference our parameters using the parameter name (example in a bootstrap script).
  • Integrated with AWS services
    • You can use parameter store with EC2, cloud formation, lambda, code build, Code pipeline, and code deploy.

Comments

Popular posts from this blog

AWS Summaries

Infrastructure Setup using Cloud Formation Templates

Effect : Deny vs No Action