When we rotate the password from AWS secrets manager, AAP fails and is unable to connect to Database. So the only fix is to restart the services in AAP controllers.
This is expected behavior by design of the AAP.
https://access.redhat.com/solutions/3112411
~~~~~
To sync the change, it is necessary to restart Tower/Controller services:
~~~~~
Our expectation is that AAP will dynamically read the config file in /etc/tower/conf.d/custom_pgsql_settings.py when required and just get the latest credentials by executing it.

FYI...Related to RFE: https://issues.redhat.com/browse/AAPRFE-1486