You can integrate Prisma Cloud with AWS Systems Manager Parameters Store.
First configure Prisma Cloud to access the Parameters Store, then create rules to inject the relevant secrets into the relevant containers.
The service account Prisma Cloud uses to access the Parameters Store must have the following permissions.
These permissions are part of pre-existing policy named AmazonSSMReadOnlyAccess.
For more information, see Configure User Access for Systems Manager.
You have created a secret in your Parameters Store.
Prisma Cloud supports all parameter types.
Note, however, that StringList is injected "as-is".
For example, if the value you specify for parameter of type StringList is twistlock,test,value, then the injected environment variable would look like this:
Code copied to clipboard
Unable to copy due to lack of browser support.
Open Prisma Cloud Console.
Integrate Prisma Cloud with the store.
Manage > Authentication > Secrets
, and click
Enter a name for the store.
This name is used when you create rules to inject secrets into specific containers.
AWS Systems Manager Parameters Store
Fill out the rest of the form, specifying how to connect to the store.
, Prisma Cloud tries conecting to your store.
If it is successful, the dialog closes, and an entry is added to the table.
Otherwise, any connection errors are displayed directly in the configuration dialog.