AWS Systems Manager (SSM)
AWS Systems Manager (SSM) gives you visibility and control of your infrastructure on AWS. It provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate operational tasks across your AWS resources.
Key Features
- Run Command: Remotely manage EC2 instances without SSH/RDP.
- Patch Manager: Automate patching of OS and applications.
- Parameter Store: Securely store configuration data and secrets (hierarchical storage).
- Session Manager: Secure browser-based shell access to instances (no open inbound ports needed).
Exam Tips
- "Store secrets/configuration": Answer is Systems Manager Parameter Store (or Secrets Manager for strictly secrets with rotation).
- "Patching instances": Answer is Patch Manager.
- "Connect without SSH": Answer is Session Manager.
- "Run scripts on multiple instances": Answer is Run Command.
Common Use Cases
- Operational Automation: Automating routine tasks like patching or updates.
- Configuration Management: Storing database connection strings or API keys.
- Security: Accessing instances without opening port 22 (SSH) or 3389 (RDP) to the internet.