Stack Overflow
Stack Overflow

Questions tagged [ssm]

Use this tag when your question has to be with problems or doubts about the AWS Systems Manager product.

AWS Systems Manager is a collection of capabilities for configuring and managing Amazon EC2 instances, on-pr.emises servers and virtual machines, and other AWS resources at scale.

Systems Manager gives you a complete view of your infrastructure performance and configuration, simplifies resource and application management, and makes it easy to operate and manage infrastructures.

More information can be found in the AWS help center

168 questions
6
votes
7 answers

AWS Session Manager can't connect unless opening SSH port

I'm trying to use AWS Systems Manager Session Manager to connect to my EC2 instances. These are private EC2 instances, without public IP, sitting on a private subnet in a VPC with Internet access through a NAT Gateway. Network ACLs are fully opened…
Nicolás García
  • 161
  • 1
  • 3
  • 6
6
votes
1 answer

AWS SSM Session Manager and Nat Gatway

I have created an EC2 instance in a private subnet (i.e. the route table has no Internet Gateway attached). The route table attached to the private subnet routes 0.0.0.0/0 to a NAT Gateway. The EC2 instance has the correct SSM Role and appears in…
APD
  • 1,459
  • 1
  • 13
  • 19
6
votes
0 answers

Connect to remote server without SSH Key using VSCode and AWS SSM

I'm looking for a way to connect to a server with VSCode without an SSH key. One way is to enable password authentication which I'd rather avoid. The servers are on company LAN but I still don't want to go that route. We've looked at solutions such…
JSH Dev
  • 61
  • 1
6
votes
2 answers

How to get the ARN of an SSM Document in CloudFormation?

I have a CloudFormation template that creates an AWS::Events::Rule and an AWS::SSM::Document. I need to provide a list of Targets for the SSM::Rule, but each target expects an ARN: mySSMDocument: Type: AWS::SSM::Document Properties: …
Titulum
  • 9,928
  • 11
  • 41
  • 79
6
votes
5 answers

AWS SSM Parameter Store: How can I edit multi-line "SecureString" values using the console?

Currently, I use a single SSM parameter to store a set of properties separated by newlines, like this: property1=value1 property2=value2 property3=value3 (I am aware of the 4K size limit, it's fine.) This works well, for normal String type…
Shorn
  • 19,077
  • 15
  • 90
  • 168
6
votes
0 answers

not able to run aws ssm run-command as different user other than root

I want to sync a s3 bucket on ec2 instance and I want to do it using ssm run-command. The problem is ssm run-command always executes as root user which does not have s3 permissions. how to run ssm run-commands as ubuntu user.
rahulk9
  • 795
  • 3
  • 10
  • 20
6
votes
1 answer

How-to restrict AWS IAM User to be able execute "SSM Run Commands" on a specific EC2 server

I am trying to setup and assign a policy so that a user can only trigger AWS Systems Manager Services (SSM) Run Commands on only authorized or assigned EC2 instances to them. To do this, I am following instructions from…
famaus
  • 233
  • 2
  • 8
5
votes
1 answer

Terraform - Use SSM Parameters in ECS container definition

I am using Terraform to deploy an ECS task and would like to use AWS SSM Parameters within the container definition of the ECS task. I have 3 SSM parameters that I would like to use to override the default properties defined in service.json. (PORT,…
ramen123
  • 113
  • 2
  • 5
5
votes
2 answers

How to add password parameter field without showing values via cloudformation?

I will be taking few inputs when i'm creating the cloudformation stack. Cloudformation stack will create a SSM document (AWS systems manager) and I want to give password as an input parameter to the SSM document before the execution. "parameters":…
Chinthaka Hasakelum
  • 151
  • 3
  • 13
5
votes
2 answers

Pass secure SSM parameter to a nested CloudFormation stack

I have a nested CloudFormation stack template that describes database and it's related resources. I need to create multiple databases for various environments (e.g. stage, qa, prod). I store database password for each environment in SSM parameter…
Slava Fomin II
  • 26,865
  • 29
  • 124
  • 202
5
votes
2 answers

Is it possible to use SSM parameters in environment variables for a lambda?

I know in Cloudformation you can create Parameters using SSM, but I really want to know if you can use SSM in environment variables for a lambda. I know I can put the SSM paths and use the sdk in the code to get those values, but maybe there is a…
Leandro
  • 870
  • 2
  • 13
  • 27
4
votes
2 answers

Terraform aws_ssm_parameter null/empty with ignore_changes

I have a Terraform config that looks like this: resource "random_string" "foo" { length = 31 special = false } resource "aws_ssm_parameter" "bar" { name = "baz" type = "SecureString" value = random_string.foo.result lifecycle { …
Gordon Seidoh Worley
  • 7,839
  • 6
  • 45
  • 82
4
votes
5 answers

Join EC2 Instance to AD domain via terraform

I hope you can help me with my problem. I am trying to automatically let my ec2 instance joins an ad domain with my terraform script. Since Terraform does not support any "Domain join directory" option I wanted to try to create an SSM Document to…
ve05ribu
  • 71
  • 1
  • 2
  • 5
4
votes
1 answer

Passing SSM parameters to CodeBuild project securely

I have a CodeBuild project with buildspec that requires database password value to operate. I want this buildspec to be environment-agnostic, but each environment requires different database password. Database password value for each environment is…
Slava Fomin II
  • 26,865
  • 29
  • 124
  • 202
4
votes
1 answer

Unable to execute HTTP request: Connect to localhost:4583 for SSM

I run localstack in docker at macOS(Mojave). I can use some other services like s3, DynamoDb, SQS; but I am unable to use SSM. I tried with aws-cli with command aws --endpoint-url=http://localhost:4583 --region ap-souteast-1 ssm put-parameter --name…
Ashraful041
  • 155
  • 1
  • 1
  • 6
1
2
3
11 12