Rotated Secrets can be set with a sync settings, ensuring that upon manual or automatic rotation, the latest value of your secret will be synced via the relevant Universal Secrets Connector automatically.

In case the Rotated Secret will be deleted from Akeyless, it will also be deleted from the target external secret management system. This ensures that secrets are consistently managed across all platforms, without any orphaned secrets lingering in your remote systems.

Sync a Rotated Secret from the CLI

Run the following command to sync a rotated secret to an external Secret Management solution using the CLI:

akeyless rotated-secret sync \
--name <Rotated Secret name> \
--usc-name <USC name> \
--remote-secret-name <remote secret name>

Where:

• name: The Rotated Secret name.

• usc-name: The name of the Universal Secret Connector.

• remote-secret-name: Remote Secret Name that will be created on the remote endpoint.

Syncing a Rotated Secret from the Console

1. Log in to the Akeyless Console, and navigate to the Rotated Secret
2. Go to the Sync tab on the secret item and click Attach.
3. Set the following settings:

• Universal Secret Connector Name: Choose the target Universal Secret Connector.

• Remote Secret Name: Enter the name of the secret that will be created or updated on the remote endpoint.

Click on Save to synchronize the rotated secret.

In case an automatic sync fails, an event will be triggered. In that case, you will be able to perform a manual sync from this tab.