AWS Secret manager and Windows docker containers

We are extensively using .net applications containerized using windows docker images and we are running those in

  • AWS EC2 instances
  • AWS ECS Windows clusters as tasks

We are looking for options to integrate AWS secret manager in the application using AWS Secret manager SDK but don't want to hard code credentials (inside container or passed through env variables).We want to access the secret manager apis using assumed role using instance meta data .

  • Is there anything additional to be done to make this happen for windows docker images ?.
  • Can windows containers access the instance profile of the host instance ?