Stack Overflow
Stack Overflow

Questions tagged [ssm]

Use this tag when your question has to be with problems or doubts about the AWS Systems Manager product.

AWS Systems Manager is a collection of capabilities for configuring and managing Amazon EC2 instances, on-pr.emises servers and virtual machines, and other AWS resources at scale.

Systems Manager gives you a complete view of your infrastructure performance and configuration, simplifies resource and application management, and makes it easy to operate and manage infrastructures.

More information can be found in the AWS help center

168 questions
4
votes
3 answers

EC2 Instance doesn't become managed after installing SSM Agent

I've installed SSM Agent (2.2.607.0) on Windows Server 2012 R2 Standard instance with the EC2 Config (4.9.2688.0). After installing it, i cannot see the server on the Managed Instances screen. I did the same steps on other servers (Windows and…
Ehab Al khashman
  • 101
  • 1
  • 8
3
votes
2 answers

How to use boto3 inside an EC2 instance

I have a python app running in a Docker container on a EC2 instance managed by ECS (well, that's what I would like...). However, to use services like SSM with boto3, I need to know the region where the instance is running. I dont need any…
GuillaumeA
  • 3,493
  • 4
  • 35
  • 69
3
votes
2 answers

Install SSM agent on my EC2 instances in order to install Inspector agent without SSH or key pairs

I have an AWS environment with a few instances that has no SSM agent preinstalled and no keypairs, is there a way to install the SSM agent without logging to my instance with SSH?. Thanks in advance for your help!.
Ricardo Linares
  • 81
  • 1
  • 5
3
votes
2 answers

AWS SSM Agent - Using the aws cli, is there a way to list all the AWS instances that are missing the SSM agent?

I need to audit a large number of AWS accounts to determine which EC2 instances are missing the SSM agent. Then I need have all those instances and their tags outputted. Running aws ssm describe-instance-information lists all the instances that have…
Kayotic
  • 97
  • 2
  • 10
3
votes
2 answers

How to create an 'AWS::SSM::Document' with DocumentType of Package using CloudFormation

This AWS CloudFormation document suggests that it is possible to administer an 'AWS::SSM::Document' resource with a DocumentType of 'Package'. However the 'Content' required to achieve this remains a mystery. Is it possible to create a Document of…
Ed Allonby
  • 157
  • 1
  • 2
  • 9
3
votes
1 answer

Passing secrets to lambda during deployment stage (CodePipeline) with Serverless?

I have a CodePipeline with GitHub as a source, set up. I am trying to, without a success, pass a single secret parameter( in this case a Stripe secret key, currently defined in an .env file -> explaination down below ) to a specific Lambda during a…
Goran Cabarkapa
  • 131
  • 6
3
votes
1 answer

How to fetch latest version of SSM parameter on Cloudformation Yaml file

I have a Cloudformation Yaml file where it creates a lot of resources, one of them is an EC2 with Windows. My problem is I need to have this automated selection of the latest AMI, I made a Lambda function where it retrieves newest AMI ID and stores…
virusivv
  • 337
  • 2
  • 5
  • 17
3
votes
1 answer

CloudWatch Events Rule not finding EC2 targets using tags

I have a CloudWatch Event Rule that will trigger an SSM Run Command Document. The targets will be identified using tags. My resources are defined according to the following CloudFormation template: SSMRunCommandDocument: Type: AWS::SSM::Document …
Titulum
  • 9,928
  • 11
  • 41
  • 79
3
votes
0 answers

Unsettled Promises in AWS Lambda from SSM Parameters

I am using the serverless framework to deploy and program my aws lambda function and since my function is ready for production I need to remove the sensitive keys and decided to use aws systems manager (ssm parameter store) to use these keys in a…
cphill
  • 5,596
  • 16
  • 89
  • 182
3
votes
0 answers

Pass SSL client cert and key content directly to python request library instead of as files

I am currently using the SSL client-side certificate in my code. I read the cert from AWS SSM and then I have to write them to a temporary file somewhere and pass that file to the request library. # read the cert and key from SSM and write to…
Farhan Haider
  • 1,244
  • 1
  • 13
  • 22
3
votes
0 answers

Partial sysprep when creating Windows AMI

tdlr; I want to create an AMI with "partial sysprep" so that SSM can connect when I launch a different Instance Type than the original off that AMI, but want to keep all else equal. It only needs to update metadata/kms routes. I recently hit an…
roxbury
  • 31
  • 4
3
votes
1 answer

Writing an IAM policy to restrict AWS SSM connections to EC2 instances by EC2 tags

I'd like to be able to all users to connect to EC2 instances using the AWS SSM (Systems Manager) 'startsession' command, but restrict which ones they can connect to through tags on the EC2 instances. IAM users belonging to a 'webserver-dev' group…
Arcterex
  • 164
  • 5
3
votes
1 answer

How to define and use at the same time a SSM parameter in CloudFormation?

Here is a SAM template (same as a CloudFormation template): Globals: Function: Environment: Variables: BAR: '{{resolve:ssm:myparam:1}}' ... MyParam: Type: "AWS::SSM::Parameter" Properties: …
Matthieu Napoli
  • 48,448
  • 45
  • 173
  • 261
2
votes
3 answers

How to create an AWS SSM Document Package using Terraform

Using Terraform, I am trying to create an AWS SSM Document Package for Chrome so I can install it on various EC2 instances I have. I define these steps via terraform: Upload zip containing Chrome installer plus install and uninstall powershell…
platinum_pidgeon
  • 95
  • 1
  • 9
2
votes
1 answer

Register-ScheduledJob as LocalSystem user

We have a requirement to monitor a directory on an EC2 instance and send any created files to an S3 bucket. To meet this requirement, I have a script that uses Powershell's FileSystemWatcher to watch the directory and the aws s3 cp command to send…
navig8tr
  • 1,724
  • 8
  • 31
  • 69
1 2
3
11 12