Posted On: Feb 22, 2024
Parameter Store, a capability of AWS Systems Manager that provides secure storage for configuration data, now allows you to share advanced-tier parameters with other AWS accounts, enabling you to centrally manage your configuration data. Parameters are key-value pairs that you can reference in code and through several AWS integrations such as AWS CloudFormation and Amazon EC2. Today, many customers have workloads in multiple AWS accounts that depend on shared configuration data. Now, you can maintain a single source of truth for configuration data by sharing parameters with other accounts that need access rather than manually duplicating and synchronizing data across accounts.
You can use central AWS accounts to share parameters for many cross-account scenarios, such as referencing centrally managed “golden” AMI IDs in EC2 Launch Templates for autoscaling, Virtual Private Cloud (VPC) IDs and domain join passwords in CloudFormation templates, and API keys in distributed applications. To share parameters, you add them to an AWS Resource Access Manager resource share. This allows you to select which parameters you want to share, principals you want to share with (e.g. AWS Organization), and permissions to grant.
To get started with sharing parameters, see Working with shared parameters. For information about advanced-tier parameters, see Managing parameter tiers. For advanced parameter pricing, see Systems Manager Pricing. This feature is available in all AWS Regions, including the AWS GovCloud (US) Regions.