Questions tagged [aws-session-manager]
5 questions
2
votes
2 answers
Can't use execute-command --interactive in AWS CLI session manager
I'm trying to use the AWS cli + session manager plugin to get into a database container to run some migrations, and I am struggling to get it working. I'm trying to use the following command:
aws ecs execute-command --cluster {cluster} --task…
HDuck
- 123
- 4
1
vote
1 answer
How to restrict AWS SSM access by EC2 tag
https://docs.aws.amazon.com/IAM/latest/UserGuide/list_awssystemsmanager.html#awssystemsmanager-policy-keys
I cant find an answer that clears this up for me
Im looking at this example:…
red888
- 4,183
- 18
- 64
- 111
0
votes
1 answer
Restrict AWS SSM access to SSH only
I need to restrict some users AWS SSM access to SSH only. These users should only be able to start a SSH session via SSM like this:
ProxyCommand sh -c "aws ssm start-session --target %h --document-name AWS-StartSSHSession --parameters…
Michael
- 345
- 6
- 19
0
votes
1 answer
Cross Account SSM session: AccessDeniedException
I have two AWS accounts and one role in each account: Account-A have RoleA and Account-B have RoleB.
RoleA will assume the RoleB to be able to connect in an EC2 instance in Account-B through ssm start-session.
Using the RoleA, I'm able to assume the…
Arrow Root
- 102
- 11
0
votes
0 answers
How do I poll for when the ssm agent is started and session manager can connect for newly created instances?
I use SSM to connection to windows ec2 instances with the cli: aws ssm start-session --target
It takes the ssm service on a windows instance a few mins to start sometimes
I can check when its done initializing like this aws ec2 wait…
red888
- 4,183
- 18
- 64
- 111