Deep Dive with Amazon EC2 Systems Manager [ENT401]
ฝัง
- เผยแพร่เมื่อ 10 ก.พ. 2025
- CWhether you are a traditional enterprise exploring migrating workloads to the cloud or are already “all-in” on AWS, performing common tasks of inventory collection, OS patch management, and image creation at scale is increasingly complicated in hybrid infrastructure environments. Amazon EC2 Systems Manager allows you to perform automated configuration and ongoing management of your hybrid environment systems at scale. This session provides an overview of key EC2 Systems Manager capabilities that help you define and track system configurations, prevent drift, and maintain software compliance of your EC2 and on-premises configurations. We will also discuss common use cases for EC2 Systems Manager and give you a demonstration of a hybrid-cloud management scenario.
![Using Microsoft Active Directory Across On-Premises and AWS Cloud Windows Workloads [SEC306]](http://i.ytimg.com/vi/Q1Hdktwsd1A/mqdefault.jpg)
![Using Microsoft Active Directory Across On-Premises and AWS Cloud Windows Workloads [SEC306]](/img/tr.png)
00:00 greeting
00:46 slide: What to expect from the session
06:05 slide: Amazon Systems Manager Components Overview and Use cases
06:08 slide: Amazon Systems Manager Agent Overview
07:18 slide: Amazon EC2 Systems Manager capabilities
07:26 slide: Amazon EC2 Systems Manager - Components
08:21 slide: Wait, what's a Document?
09:32 slide: Run Command
11:19 slide: Run Command: Use Cases
13:38 slide: Walkthrough: Run Command
19:02 slide: State Manager & Inventory
20:14 slide: State Manager: Use Cases
20:55 slide: Inventory: Use Cases
22:20 slide: Walkthrough: State Manager and Inventory
30:48 slide: Maintenance Window & Patch Manager
31:40 slide: Maintenance Window: Use Cases
32:14 slide: Patch Manager: Use Cases
33:31 slide: Walkthrough: Patch Manager
41:41 slide: Automation
42:22 slide: Automation: Use Cases
43:47 slide: Parameter Store
45:24 slide: Parameter Store: Use Cases
46:27 slide: Blog: Access Secrets and Configuration data in CodeDeploy
47:36 slide: Example: Integration with other AWS Services
48:54 slide: Integration with Lambda
50:36 slide: Example: Remediate Amazon Inspector Findings
51:45 slide: Recent Launches
54:13 slide: Customers using Systems Manager
54:31 slide: Where is SSM
54:39 slide: In summary...
aws.amazon.com/blogs/mt/
One of the best presentations. No BS, no loose talk. Straight, to the point. Learned Systems Manager which I had no clue about only in one hour. Great job my man. You are awesome!
By far the best description and view of EC2 Systems Manager. Thank you for putting this together!
Excellent! Presentation and Demo's. Thank you.
super presentation! saw so many video on AWS SSM, so far this gave me clear idea in just 1 hour.
Awesome Demo for SSM. I got cleared lot of doubts by this demo
Can I say, System manager is like Ansible, wherein
Document Playbook
Inventory (Software) Inventory (Host)
Parameter Store Config file
State manager, Patch manager And Automation These are same key features of Ansible
SM Agent install is needed agentless but works with SSH
Excellent Demo.. Very well explained
He is so clear and loud with the components.. Thanks
really good presentation, use cases and examples were very helpful - thanks
Excellent presentation and it was content rich. Thank you!
Excellent demo of SSM . Perfect content and excellent delivery . Saved me a lot of time from reading the docs.
I wish AWS has a centralised github repo for storing all of it's slides
www.slideshare.net/AmazonWebServices/ent401-deep-dive-with-amazon-ec2-systems-manager-78355858
thank you
Awesome presentation Thank you much, trying to learn the SSM design , I can do now more wonders with it.
Excellent Presentation. Thanks.
Excellent overview! Thank you.
The old SSM UI in this video looks much much simple and better than the current one which is a clusterfuck
really helpful
awesome demo about SSM
Very Helpful
How can I move patching log to subfolders VM wise i.e for vm1 it should send vm1 patch log vm1 folder in bucket likewise there is 10 VM so respective patch log should move to respective VM folder of same bucket
where do we can see scan reports after running scan operation
Can we do same with custom AMI's or will it allow only for Amazon AMI ?
Could you please let me know the below
1) How to skip patches that we doesn't want to install? (in window and Linux instances)
2) Please share information for how perform patching in ASG group without downtime?
There is exclusion option
I would think that instead of modifying the instances that are brought up from auto scaling, one would want the AMI that is used to stand up those instances to be patched via SSM instead,. So then any instances that get started would use that AMI that is patched, and subsequent starts of new instances in the auto scaling would not need to be touched. Granted the ones that are running yes, they may need to be patched in place. I believe I read somewhere that once you let's say manually update your AMI, there is a way to basically roll out running instances from the auto scaling. One or more at a time the instances would be set to not accept the traffic and a new instance would get started from that golden patched ami and fill the missing instances taken out of the rotation. I may not be explaining it just right but it is something along those lines.
Can we schedule the maintenance window to run Monthly once rather than weekly once is there an option to do that?
Yes
@@blewis549 how to send patch log of different VM suppose 10 VM to different folder i.e vm1 ,vm2 in same bucket
good one
well done!
Great Demo of SSM. I love how synergistic it is. Do you see SSM being a tool that can be used at an organizational level instead of an account level? I'd loved to be able to use the run command to issue a manual command on multiple accounts within my org to all install the same patch.
Are you actually aware of this technology, do you know how mature it is, how it can be scaled? Your entire 'Org' can be manged on AWS