tencent cloud

Secrets Manager

Product Introduction
Overview
Features
Use Cases
Purchase Guide
Billing Overview
Purchase Methods
Overdue Payment Policies
Getting Started
Operation Guide
Custom Secret
Database Credential
CVM SSH Key Secret
Log Audit
Access Control
Practical Tutorial
Hosting and Using Secrets
Rotating Hosted Secrets
API Documentation
History
Introduction
API Category
Making API Requests
Data Security APIs
Other APIs
Data Types
Error Codes
FAQs
Service Level Agreement
Contact Us
Glossary
DocumentaçãoSecrets ManagerOperation GuideDatabase CredentialInstructions

Instructions

PDF
Modo Foco
Tamanho da Fonte
Última atualização: 2024-01-02 15:07:13

Prerequisites

You have created a database credential. If haven’t, see Creating a Database Credential.
You have enabled rotation for the credential. If haven’t, see Enabling a Database Credential.

Rotation Effect

SSM rotates accounts and passwords stored in the credential upon a periodical rotation preset by the user, so that the client can obtain the newest account and password by calling GetSecretValue. The rotation does not affect the credential’s access to the corresponding database using the newest account and password, as SSM synchronizes the account and password information to the database.

Integrating Application with SSM

Only by calling GetSecretValue, the application can obtain the newest account and password for database access.

Risk Notice

Risk

The database credential’s account password has been updated after the periodical rotation. If you access the database with the expired password, an access failure occurs.

Solution

To prevent access failure, do not enable the client to save passwords automatically. Also, use Tencent Cloud’s SSM SDK (Go and Python) recommended in Best Practices instead of a third-party SDK that implements database connection pooling.
Anterior: OverviewPróximo: Creating a Database Credential

Ajuda e Suporte

Esta página foi útil?

comentários