[英]Store SQL Server sa password in secret manager
Is there a way to store and setup rotation of sa
account password in AWS Secrets Manager when installing SQL Server on EC2?在 EC2 上安装 SQL 服务器时,是否可以在 AWS Secrets Manager 中存储和设置
sa
帐户密码的轮换?
All I see in Secrets Manager is options to setup database users but not the instance level users unless I create a generic SecureString
.我在 Secrets Manager 中看到的只是设置数据库用户的选项,而不是设置实例级别用户的选项,除非我创建了一个通用
SecureString
。 I would like to use Password Rotation
functionality for sa
user's password.我想对
sa
用户的密码使用Password Rotation
功能。
There's nothing special with a Password Rotation
functionality that wouldn't work with any kind of secret. Password Rotation
功能没有什么特别之处,它不适用于任何类型的秘密。
When you're enabling the password rotation, what you do is set up a Lambda function that will do the rotation.当您启用密码轮换时,您要做的是设置一个 Lambda function 来进行轮换。 In AWS documentation you can find a template for a function that is doing the rotation on the RDS database and you can modify the code for that function to make the update you need.
在 AWS 文档中,您可以找到在 RDS 数据库上进行轮换的 function 的模板,您可以修改该 function 的代码以进行所需的更新。 As long as you can make the change for
sa
programmatically from a Lambda function, you can use the Rotation
functionality of a Secrets manager只要您可以从 Lambda function 以编程方式对
sa
进行更改,您就可以使用 Secrets manager 的Rotation
功能
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.