Setup AWS “Instance Profile” for on-prem servers


I assume you already knew what the EC2 instance profile is. Basically, the instance profile defines the permissions that a EC instance has. As it is associated with an IAM role which has a bunch of IAM policies attached. And the AWS credential in the EC2 metadata is automatically rotated by the instance profile. In … Continue reading Setup AWS “Instance Profile” for on-prem servers

Port Forwarding over AWS Session Manager


Continue with the Session Manager over PrivateLink, another good use case for session manager is port forwarding. Here is a quick demo: First, login into the EC2 instance with session manager to install a Apache server # Install Apachesudo yum -y install httpd # Start Apache web serversudo systemctl start httpd # Ensure port 80 … Continue reading Port Forwarding over AWS Session Manager

Use AWS SSM Session Manager Over PrivateLink


AWS SSM Session Manager is a great addition to the existing AWS services, simply speaking it provides a secured, manageable and easier way to access the instance inside the VPC, and more (e.g. port forwarding). There are two ways to use session manager: over Internet vs over PrivateLink. Over Internet: The instance communicates to the … Continue reading Use AWS SSM Session Manager Over PrivateLink