diff --git a/roles/product_install/tasks/main.yml b/roles/product_install/tasks/main.yml
index ffe3c25..68266b0 100644
--- a/roles/product_install/tasks/main.yml
+++ b/roles/product_install/tasks/main.yml
@@ -177,14 +177,20 @@
 - name: download_binary is true so fetch and do all the things
   block:
 
-    # Fetch binary and copy to temp
+    # Fetch binary and copy to temp 
+    # optionally grab basic_auth creds from secrets_manager secret called 'download_atlassian'
     - name: Fetch binary
       ansible.builtin.get_url:
         url: "{{ atl_product_download_url }}"
         dest: "{{ atl_product_temp_download }}"
+        url_password: "{{ lookup('amazon.aws.aws_secret', passwordpath, region=ansible_ec2_placement_region, bypath=false, nested=true, on_denied='skip', on_missing='skip') }}"
+        url_username: "{{ lookup('amazon.aws.aws_secret', userpath, region=ansible_ec2_placement_region, bypath=false, nested=true, on_denied='skip', on_missing='skip') }}"
         mode: 0755
         force: false
       register: atl_product_completed
+      vars:
+        passwordpath: "download_atlassian.password"
+        userpath: "download_atlassian.username"
 
     # If product installer was fetched make the lock directory
     - name: Create moving_lock.