Skip to content

Configure Secrets

On AWS

  1. From the AWS console navigate to the AWS secrets manager
  2. Click Store a new secret
  3. Select Other type of secret
  4. Select Plaintext
  5. Remove the dictionary.
  6. Generate a secret key from the command line pwgen -n 64
  7. Copy one of the keys into the plaintext input. Ensure that the key is the only string present
  8. Ensure that Encryption key has aws/secretsmanager selected
  9. Click Next
  10. Give your secret a name. Convention is <projectname>-ansible-vault-secret
  11. Click Next
  12. Click Next again.

Local

In deploy/echo-vault-pass.sh add the secret name to the export SECRET_ID line.

8 export SECRET_ID="<projectname>-ansible-vault-secret"
Last update: 2024-05-08