Connect to EC2 with Session Manager and EC2 Instance Connect

Рет қаралды 6,905

Күн бұрын

Пікірлер: 18

@Information-Overlord 26 күн бұрын

You absolutely nailed it Neil! Strongly recommend this to anyone working with AWS. - Whether a newbie or a veteran. Full of useful details and just at the right pace. Note that for SSM to work, one must have “Default Host Management” enabled in AWS Systems Manager / Fleet Manager for every region where EC2 instances are deployed (it is a per-region setting).

@DigitalCloudTraining 20 күн бұрын

Thanks for your support. We truly appreciate it!

@johanballin6601 2 ай бұрын

Finally a seriously useful video about an AWS service. While the vast majority of other videos are, at best, a synopsis of AWS documentation this video shoes the what and how in a very succinct and detailed way that cuts to the chase without delay. Kudos! I wish more videos were structured like this.

@DigitalCloudTraining Ай бұрын

Thanks for your kind words! We appreciate your support.

@dw2291 2 күн бұрын

Great video, but I am curious how do you maintain user attribution? First two options, Users are becoming ec2user and can pivot from there without us being able to directly tell who they were? Is there a way to use our IAM creds or pass through from an IdP with these services? With session manager we have the Cloudtrail logs I suppose but the OS logs are still not going to match or does Session Manager somehow fix up the OS Logging?

@JulioSarmiento-z8x 4 ай бұрын

Great work. Lots of detail and easy to follow. I do wish you would have gone into how to use Session Manager to connect to a Private EC2.

@DigitalCloudTraining 4 ай бұрын

Thanks for the positive feedback! Suggestion is noted.

@Antediluvian_analyst 4 ай бұрын

Great Job. Would definetly recommend my peers this channel. At 18:16 (When Clicking on public instance) Got this error: The version of SSM Agent on the instance does not support Session Manager. Update the agent to the latest version.

@DigitalCloudTraining 4 ай бұрын

Hi there, we recommend posting your question in our Facebook group. Our community members are always happy to share their knowledge and help each other out. If you're not already a member of our Facebook community, we'd love to have you join us!   Here's the link to sign up: facebook.com/groups/awscertificationqa Once you're in, you can post your question and get some helpful insights. Thank you for your understanding, and we wish you all the best in your exam preparations!

@reemdawg5980 6 ай бұрын

SSH from anywhere is a big security gap. Is there any way around this?

@DigitalCloudTraining 6 ай бұрын

@ftchi570 4 ай бұрын

I i believe that using ec2 instance connect for ec2 in private subnet is secure enough because we leverage the AWS backbone network through the endpoints ? Right ?

@DigitalCloudTraining 4 ай бұрын

@JoeNetti 3 ай бұрын

you helped me hate AWS a little less

@DigitalCloudTraining 2 ай бұрын

That's good to know!

@blanky_nap 9 ай бұрын

didn't get how it worked. For SSM normally the instance requires AmazonSSMManagedInstanceCore policy in the instance profile. Did i miss smth?

@DigitalCloudTraining 9 ай бұрын

@delimaha8771 7 ай бұрын

I have the exactly question. I created a new VPC . It just works. But when I create ec2 on existing VPC, it does not show up the ec2 in the private network