EC2 via Systems Manager Agent (SSM)
Integrate with Apono to view existing permissions and create Access Flows to EC2 instances.
Overview
- Reduce Over Privileges - Discover existing privileges to EC2 instances and convert them to on-demand access flows to reduce over-privileges.
- Self Service Access - Empower your developers to gain self-servable access to instances using Slack.
- Automated Approval Workflows - Create approval workflows to specific sensitive instances.
- Restricted Third Party Access - Grant third-party (customer or vendor) time-based access to specific instances with MFA verification.
- Review Access - View a detailed access audit of who was granted access to which instances with what permission level and why.
The integration provides the ability to grant users permissions to connect to the EC2 with a secure connection - SSM
Prerequisites
- The AWS account integration where the EC2 is, should be connected in Apono.
- EC2 machine with SSM agent installed. Installed by default in most EC2s
docs.aws.amazon.com/systems-manager/latest/userguide/ssm-agent - End users - on the local user's computer - will need to install the session manager plugin for AWS CLI.
docs.aws.amazon.com/systems-manager/latest/userguide/session-manager-working-with-install-plugin
How To Integrate EC2
Have you connected an AWS account?
Make sure you have first integrated your AWS account to Apono. If not, follow this AWS Integration step-by-step guide.
- Click on Integrations Catalog
- Under AWS, look for EC2 and click Connect
- Specify an Integration Name
- Choose the Cloud Account
- Choose the Region
- Click Connect
Updated 4 months ago