Can XCOM SSL certificates be stored in AWS Secrets Manager or similar products
Article ID: 369153
Updated On: 07-03-2025
Products
Issue/Introduction
Can XCOM SSL certificates/private keys be stored in AWS Secrets Manager or any other secrets management provider?
Environment
Release : 12.0
XCOM Data Transport for Linux
Operating System: Linux under AWS
Resolution
XCOM SSL certificates/private keys must be in PEM format files (as designated in the file $XCOM_HOME/config/configssl.cnf).
XCOM Engineering advised that although it is easy and requires no changes to XCOM or the certificate format to import into AWS Secrets Manager, new API/SDK functions and code will be required for XCOM to retrieve Secrets from AWS Secrets Manager.
Thus an enhancement request should be submitted via the Broadcom Ideas Community using Category="XCOM Data Transport"
Additional Information
The idea was created on this page: Retrieve Secrets from AWS Secrets Manager with XCOM for SSL certificates/private keys
Other secrets management providers have also been mentioned in the comments i.e.
- Symantec Privileged Access Manager
- AWS Secrets Manager
- CyberArk Central Credential Provider (CCP)
- Delinea Secret Server (On-Premise) - Secrets Manager
- HashiCorp Vault
Feedback
