AWS Secrets Manager allows you to safely store and use data source credential information. Once you obtain the credential information for your data source, you should store this information as a secret in the Secrets Manager to avoid unauthorized access to your Salesforce data source. The secret name that you specify is used to provide credential information when creating a connection.

Important: Your AWS Glue ETL job and secret must be hosted in the same region. Cross-region secret retrieval is not currently supported.

When you create a secret, you enter key-value pairs for each credential you are storing in the Secrets Manager. The keys are case-sensitive and must match the keys provided in the JDBC URL result field when creating a connection (see Creating a Salesforce connection in AWS Glue Studio).

For more information about creating and using secrets, refer to Creating and Managing Secrets with AWS Secrets Manager.