Key Management Service:Create a secret

KMS allows you to manage secrets in a centralized manner. This topic describes how to create a secret in the Key Management Service (KMS) console.

1. Log on to the KMS console.
2. In the top navigation bar, select the region in which you want to create a secret.
3. In the left-side navigation pane, click Secrets.
4. Click Create Secret.
5. In the Create Secret dialog box, select a secret type, configure the parameters, and then click Next.
   • Managed Credential for RDS: Configure the Secret name, Select RDS Instance, Set Secret Value, and Secret Description parameters.
   • Managed RAM secret: Configure the Select RAM user, Set secret value, and Secret Description parameters.
   • Managed ECS secret: Configure the Secret name, Managed instance, Managed User, Initial secret value, and Secret Description parameters.
   • Generic Secrets: Configure the Secret name, Set Secret Value, Secret InitVersion, Secret Description, and Encryption Master Key parameters.
6. In the Create Secret dialog box, select Turn on automatic rotation, configure the Rotation Period parameter, and then click Next.
   Note If you set the Secret Type parameter to Other secrets, you cannot enable automatic rotation in the KMS console. For more information about how to enable automatic rotation for generic secrets, see Rotate generic secrets.
7. In the Create Secret dialog box, confirm the configuration of the secret and click OK.
   After you create the secret, you can view the details, such as the name, type, and creation time of the secret.