Posted On: Feb 2, 2022

AWS Secrets Manager now supports the ability to schedule secret rotations within specific time windows. With this feature, you can limit secret rotations to specific hours on specific days. Previously, Secrets Manager supported automated rotation of secrets within the last 24 hours of specified rotation interval. With today’s launch, you no longer have to choose between the convenience of managed rotations and the operational safety of maintenance windows.

Customers can configure rotation windows in the Secrets Manager console using a simple interactive wizard. Rotation settings can also be specified using a cron expression through the AWS console, the AWS API or CLI, or using AWS CloudFormation. For a step-by-step tutorial on specifying rotation windows for your secret, see the launch blog. To learn about rotation features in Secrets Manager, see Rotate Secrets.