Cloud automation for Secrets Manager
Community registry

Cloud architecture including Secrets Manager instance and optional security, logging and notification services.

  • IBM
  • Date of last update: 07/29/2025
  • Docs
  • Get help
  • Readme file

  • Details

    Type
    • Terraform
    Provider
    • IBM
    Category
    • Converged infrastructure
    • Security
    Last updated
    • 07/29/2025
    Product version
    • v2.6.16
    Variation
    • Fully configurable
    Est. deployment time:
    • 15min

Details

Type
  • Terraform
Provider
  • IBM
Category
  • Converged infrastructure
  • Security
Last updated
  • 07/29/2025
Product version
  • v2.6.16
Variation
  • Fully configurable
Est. deployment time:
  • 15min

Overview

This deployable architecture is used to provision and configure an IBM Cloud Secrets Manager instance. Optionally, supports creating and/or configuring:

  • IBM Cloud account: To set up IBM Cloud accounts settings.
  • Key Protect: For data encryption using customer-managed keys.
  • Cloud Logs: Logging and monitoring platform logs.
  • Cloud Monitoring:Measure how users and applications interact with the Secrets Manager instance.
  • Event Notifications: Send notifications of events to other users, or destinations, by using email, SMS or other supported delivery channels.

ℹ️ This Terraform-based automation is part of a broader suite of IBM-maintained Infrastructure as Code (IaC) assets, each following the naming pattern "Cloud automation for servicename" and focusing on single IBM Cloud service. These single-service deployable architectures can be used on their own to streamline and automate service deployments through an IaC approach, or assembled together into a broader automated IaC stack to automate the deployment of an end-to-end solution architecture.

Community uses
Last week: 107
Last month: 415
Views
Last week: 8,765
Last month: 31,956
Badges (1)
Terraform IBM Modules (TIM)

Badges

Product version

v2.6.16

Variation

Fully configurable

Terraform IBM Modules (TIM): A collection of curated IBM Cloud Terraform modules. Full documentation at https://github.com/terraform-ibm-modules/documentation Learn more

Features and capabilities

Creates a Secrets Manager instance

Get started with Secrets Manager by creating an instance. Learn more.

Create secret groups

Secret groups help you to organize and manage your secrets. Learn more.

Manage access to your secrets

Manage access for secret groups by creating access groups. Learn more.

Configure an IAM credentials engine

An IAM credentials engine can be used to manage the lifecycle of your IBM Cloud resources through Secrets Manager. Learn more.

Sets up authorization policy

Sets up IBM IAM authorization policy between IBM Secrets Manager instance and IBM Key Management Service (KMS) instance. It also supports Event Notification authorization policy. Learn more.

Configures lifecycle notifications

Optionally, you can choose to configure lifecycle notifications by integrating the Event Notifications service. Learn more.

Sets up logging for Secrets Manager instance

Optionally, you can set up IBM Cloud Logs service to route, alert and visualize platform logs generated by your Secrets Manager instance. Learn more.

Sets up monitoring operational metrics for Secrets Manager instance

Optionally, you can set up IBM Cloud Monitoring service to measure how users and applications interact with your Secrets Manager instance. Learn more.

Architecture

Select a variation

Select a variation

Secrets Manager and optional surround services.

This architecture supports creating and configuring a Secrets Manager instance and optional security, logging and notification services.

Summary

Cloud automation for Secrets Manager

    1 resources
    • Total estimated cost
      *$0.00/mo
    Already have an account? Log in