Amazon Bedrock AgentCore Identity now allows you to bring your own secrets with AWS Secrets Manager
Amazon Bedrock AgentCore Identity now allows customers the ability to reference existing AWS Secrets Manager secret ARNs directly in AgentCore Identity Credential Providers. Previously, AgentCore Identity used a service-managed secret approach, where secrets were created and managed by the service on the customer's behalf. This approach prevented customers from applying resource tags on create, encrypting secrets with a customer-managed key (CMK), or applying other organization-specific governance controls at the time of secret creation — causing friction for teams with strict governance requi
The increasing adoption of AI agents and the maturity of cloud security services necessitate more robust and integrated secret management solutions.
This update enhances the security posture and compliance capabilities for organizations deploying AI agents, particularly those with stringent governance requirements.
Customers can now directly link existing AWS Secrets Manager secrets to Amazon Bedrock AgentCore Identity, allowing for better control over encryption, tagging, and governance.
- · AWS customers with strict governance needs
- · Security and compliance teams
- · Organizations deploying AI agents on AWS
Increased control and compliance for AI agent deployments on AWS.
Potential for broader adoption of AI agents in highly regulated industries due to enhanced security features.
Reduced operational overhead for managing secrets for AI workloads, potentially freeing up resources for other security initiatives.
This signal links to a primary source. Continuum Brief monitors and indexes it as part of the live intelligence stream — we do not republish source content.
Read at AWS What's New