Sharing Secrets Between Multiple Accounts Using AWS Secrets Manager

1m 5s

This lesson covers how you can share secrets, such as database API keys and database credentials, between different AWS accounts through the use of resource-based policies and AWS Secrets Manager. It explains the key aspects of the service before moving onto a real-world demonstration on the AWS platform to show you how it all works.

If you have any feedback, queries, or questions related to this lesson, please contact us at

Intended Audience

This lesson has been created for those who are responsible for managing security and credentials within AWS, and for those wanting to architect the removal of hardcoded passwords and keys from applications and services. 

Learning Objectives

By the end of this lesson, you will understand how to securely allow multiple identities in multiple AWS accounts to access secrets from within another AWS account using AWS secrets manager and resource-based policies.


To get the most from this lesson, you should be familiar with JSON policies and their syntax, and the basic concepts of the Key Management Service, IAM, and the AWS CLI.

About the Author
Learning paths

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.

To date, Stuart has created 250+ courses relating to cloud computing reaching over 1 million+ students.

Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.

He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.

Covered Topics