AWS Site-to-Site VPN: secure pre-shared key (PSK) Management with AWS Secrets Manager

Networking & Content Delivery Blog

AWS has introduced a new feature for AWS Site-to-Site VPN that allows secure management of pre-shared keys (PSKs) using AWS Secrets Manager. This enhancement provides several key improvements in VPN security and management:

Replaces plaintext PSK storage with secure Secrets Manager integration
Enables centralized secret management for VPN connections
Provides enhanced access control and audit visibility through AWS CloudTrail
Allows migration of existing VPN connections to Secrets Manager storage
Offers no additional cost for PSK storage when created through Site-to-Site VPN service

Key benefits include improved security, centralized key management, encryption at rest, and the ability to apply fine-grained IAM policies to VPN PSKs. Network administrators can now more effectively protect and manage their VPN connection credentials.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Jun 3
2025

AWS Site-to-Site VPN introduces three new capabilities for enhanced security

Jun 26
2025

Building secure multicloud access with AWS Client VPN and AWS Site-to-Site VPN

Nov 20
2025

Introducing AWS Site-to-Site VPN Concentrator for multi-site connectivity

Nov 20
2025

AWS Site-to-Site VPN is collaborating with eero to simplify remote connectivity

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

AWS Site-to-Site VPN: secure pre-shared key (PSK) Management with AWS Secrets Manager

Related articles