Posted On: May 18, 2020

Starting today, you can use Attribute-based access control (ABAC) with EC2 Instance Connect (EIC) to define Secure Shell (SSH) access permissions based on attributes. Attribute-based access control is an authorization strategy that defines permissions based on tags which can be attached to users and AWS resources.

Amazon EC2 Instance Connect provides a secure and straightforward way to connect to your instances using Secure Shell (SSH). EC2 Instance Connect integrates with AWS Identity and Access Management (IAM) to enable fine-grained access control to EC2 Instances while eliminating the need to share and manage SSH keys. Additionally, you can monitor the EC2 connection requests using AWS CloudTrail

You can use your existing SSH client, EC2 Instance Connect CLI, or Browser-based client to connect to your EC2 Instances. For more information on EC2 Instance Connect, please refer to AWS EC2 Instance Connect documentation.