AWS – Amazon RDS for Oracle now supports credential management with AWS Secrets Manager for databases using Oracle multitenant architecture

Amazon RDS for Oracle now supports credential management with AWS Secrets Manager for databases that adopt Oracle multitenant architecture. Oracle multitenant architecture enables customers to consolidate data and code from multiple databases into one database by setting up a multitenant container database (CDB) that can include multiple pluggable databases (PDBs). With this launch, customers can use AWS Secrets Manager to manage user credentials for their tenant pluggable databases.

Using AWS Secrets Manager to manage user credentials for tenant pluggable databases allows customers to automate regular password rotations, use AWS Identity and Access Management (IAM) for access control to authorized users, encrypt credentials using AWS Key Management Service (KMS), and enhance security posture by replacing the use of plaintext password in application code with programmatic calls to retrieve credentials from AWS Secrets Manager. RDS database management operations such as database restore from Amazon S3 or a snapshot and point-in-time recovery automatically use credentials managed in AWS Secrets Manager.

To learn more about using AWS Secrets Manager with Amazon RDS for Oracle database with the CDB architecture, see the Amazon RDS documentation. When storing database secrets in AWS Secrets Manager, your AWS account incurs charges. For information about AWS Secrets Manager pricing and capabilities, visit the AWS Secrets Manager product page.

This capability is available in all AWS Regions where Amazon RDS for Oracle and AWS Secrets Manager are available. For more information about regional availability, see the AWS Region table.

Read More for the details.