Question 1

What's the difference between AWS Parameter Store and AWS Secrets Manager?

Accepted Answer

Both can store sensitive values, but Secrets Manager is purpose-built for secrets with features like built-in rotation integrations and secret lifecycle tooling. Parameter Store is often used for general configuration (and can store encrypted secrets), but it typically requires you to implement rotation workflows yourself if you need them.

Question 2

When should I use Parameter Store?

Accepted Answer

Use it when you want a centralized place to store application configuration (like API endpoints, feature flags, or non-rotating credentials) and retrieve it securely at runtime using IAM permissions. If you need managed secret rotation, advanced secret lifecycle features, or frequent secret rotation requirements, consider AWS Secrets Manager instead.

Question 3

How much does Parameter Store cost?

Accepted Answer

Pricing depends on parameter type and usage. Standard parameters are generally available at no additional charge, while advanced parameters have a per-parameter monthly cost and may include additional capabilities (such as larger size and higher throughput). If you encrypt values, AWS KMS charges may apply for key usage. Always confirm current pricing on the AWS Systems Manager Parameter Store pricing page and your region.

Parameter Store

Definition

Real-World Example

Cloud Provider Equivalencies

Explore More Cloud Computing Terms