In my previous post I showed you how to get an Amazon EC2 instance to report into AWS Systems Manager. In this blog post I’ll go through how you can get an on-premises instance be it physical or virtual to report into AWS Systems Manager as well.
Create the IAM Role to enable access for Hybrid Environments
- Create a text file named ‘SSMService-Trust.json’ with the following trust policy. Save the file with the ‘.json’ file extension.
- Use the create-role command to create the service role.
- Use attach-role-policy as follows to enable the SSMServiceRole to create a session token. The session token gives your managed instance permission to run commands using Systems Manager.
Continue reading “Step-by-Step Guide to AWS Systems Manager (On-Premises Instances) – Part 2”
In this blog post I’ll show you how to configure the relevant components to enable your Amazon EC2 instances to have the ability to be managed via AWS Systems Manager. In a follow up post, I’ll then show you how to configure the relevant components to allow you to also manage existing on-premises infrastructure via AWS Systems Manager.
There are 2 different types of instances that can be registered with AWS Systems Manager:
- Amazon EC2 Instances that are within the Amazon Platform.
- On-Premises Instances which are either Physical or Virtual.
In this blog post, I’ll walk through how to get either an Amazon EC2 instance to report into AWS Systems Manager.
Create the IAM Role to enable access for EC2 instances
- Login to the AWS Management Console.
- Navigate to Identity and Access Management (IAM).
- Click Roles.
- Click Create Role.
- Select AWS Service and Click EC2.
- Click Next:Permissions.
- Filter on ‘SSM’ to make finding the correct policy easier.
- Select ‘AmazonEC2RoleforSSM’
- Click Next:Review.
- Give the IAM Role a name such as ‘ManagedInstanceRoleforSSM’.
- Click Create Role.
Continue reading “Step-by-Step Guide to AWS Systems Manager (EC2 Instances) – Part 1”
When deploying a highly available 2-tier web application on AWS, which combination of AWS Services meets the requirements? (Choose 1)
- AWS Direct Connect
- Amazon Route53
- AWS Storage Gateway
- Elastic Load Balancing
- Amazon EC2
- Auto Scaling
- Amazon VPC
- AWS CloudTrail
a. 1, 2, 5 and 6
b. 3, 4, 5 and 8
c. 1, 3, 5 and 7
d. 1 through 8
e. 2, 4, 5 and 6
This question is testing your overall knowledge of a number of fundamental AWS Services that are the basic building blocks to pretty much all deployments.
In my opinion if you’re studying for the AWS Solution Architect Professional you should already know what each of these Services does and what it’s use case is for.
Continue reading “AWS SA Professional – Practice Question 9”