Posted On: Sep 11, 2018
AWS Systems Manager Session Manager is a new interactive shell and CLI that helps to provide secure, access-controlled, and audited Windows and Linux EC2 instance management. Session Manager removes the need to open inbound ports, manage SSH keys, or use bastion hosts.
With Session Manager, you can improve security, centralize access management, and receive detailed auditing. In addition to not requiring you to open inbound ports, you can use Session Manager with AWS PrivateLink to prevent traffic from going through the public internet. By using AWS Identity and Access Management (IAM) policies, you have a single, central place to grant and revoke access to instances. Once access is provided, you can audit which user accessed an instance using AWS CloudTrail and log each command to Amazon S3 or Amazon CloudWatch Logs. Session Manager users can get started quickly by clicking to start a session and then selecting an instance.
AWS Systems Manager Session Manager is available in US East (N. Virginia), US East (Ohio), US West (N. California), US West (Oregon), Canada (Central), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Tokyo), Asia Pacific (Seoul), Asia Pacific (Mumbai), EU (London), EU (Frankfurt), EU (Ireland), EU (Paris), and South America (São Paulo) public AWS regions.