Create Functions to Deploy a SecureString SSM Parameter
ACM.224 Creating a SecureString Parameter with the AWS CLI
Part of my series on Automating Cybersecurity Metrics. The Code.
Free Content on Jobs in Cybersecurity | Sign up for the Email List
The last post covered why you may or may not need AWS Traffic Mirroring. There could be better places to start implementing security controls.
One of those is to create common, secure CloudFormation templates as I’ve been showing you throughout this series. However, sometimes you cannot create a CloudFormation template to get the most secure option.
No SecureString support for SSM Parameters in CloudFormation
At the time of this writing, AWS CloudFormation does not support creation of an SSM Parameter of type SecureString. That means you cannot create an encrypted SSM Parameter with CloudFormation. For that reason I’m going to create a function that can create an encrypted parameter with the AWS CLI.
