Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
JAWS-UG_CLI_Setup_SSM_20211028
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
h-ashisan
October 28, 2021
Technology
0
960
JAWS-UG_CLI_Setup_SSM_20211028
JAWS-UG CLI専門支部で2021年10月28日に「【初心者向け】Systems Managerってどう始めるんだっけ?」というタイトルで発表したLTです。
h-ashisan
October 28, 2021
Tweet
Share
More Decks by h-ashisan
See All by h-ashisan
regrowth_tokyo_2025_securityagent
hiashisan
0
480
Tokyo_reInforce_2025_recap_iam_access_analyzer
hiashisan
0
360
OpsJAWS34_CloudTrailLake_for_Organizations
hiashisan
0
790
Classmethod_regrowth_2024_tokyo_security_identity_governance_summary
hiashisan
0
1.6k
2024/11/29_失敗談から学ぶ! エンジニア向けre:Invent攻略アンチパターン集
hiashisan
0
760
20241015 Toranomon Tech Hub#1 Service Catalog使ってみた
hiashisan
0
710
Practical-AWS-Security-measures-you-can-implement-now
hiashisan
0
810
20240724_cm_odyssey_hibiyatech
hiashisan
0
540
[2024最新版]AWS Control Towerを使ったセキュアなマルチアカウント環境の作り方
hiashisan
0
1.4k
Other Decks in Technology
See All in Technology
大規模ECサイトのあるバッチのパフォーマンスを改善するために僕たちのチームがしてきたこと
panda_program
1
340
Copilot 宇宙へ 〜生成AIで「専門データの壁」を壊す方法〜
nakasho
0
150
会社紹介資料 / Sansan Company Profile
sansan33
PRO
16
410k
Phase02_AI座学_応用
overflowinc
0
1.9k
Phase01_AI座学_基礎
overflowinc
0
2.6k
Astro Islandsの 内部実装を 「日本で一番わかりやすく」 ざっくり解説!
knj
0
180
Phase04_ターミナル基礎
overflowinc
0
1.5k
SaaSに宿る21g
kanyamaguc
2
110
SSoT(Single Source of Truth)で「壊して再生」する設計
kawauso
1
220
プラットフォームエンジニアリングはAI時代の開発者をどう救うのか
jacopen
8
4.2k
FastMCP OAuth Proxy with Cognito
hironobuiga
3
120
GCASアップデート(202601-202603)
techniczna
0
250
Featured
See All Featured
Effective software design: The role of men in debugging patriarchy in IT @ Voxxed Days AMS
baasie
0
260
Mind Mapping
helmedeiros
PRO
1
130
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
659
61k
Speed Design
sergeychernyshev
33
1.6k
Organizational Design Perspectives: An Ontology of Organizational Design Elements
kimpetersen
PRO
1
650
Leveraging Curiosity to Care for An Aging Population
cassininazir
1
200
Navigating the Design Leadership Dip - Product Design Week Design Leaders+ Conference 2024
apolaine
0
240
The Organizational Zoo: Understanding Human Behavior Agility Through Metaphoric Constructive Conversations (based on the works of Arthur Shelley, Ph.D)
kimpetersen
PRO
0
270
The AI Revolution Will Not Be Monopolized: How open-source beats economies of scale, even for LLMs
inesmontani
PRO
3
3.2k
Joys of Absence: A Defence of Solitary Play
codingconduct
1
320
No one is an island. Learnings from fostering a developers community.
thoeni
21
3.6k
Docker and Python
trallard
47
3.8k
Transcript
1 ʲॳ৺ऀ͚ʳ Systems ManagerͬͯͲ͏࢝ΊΔΜ͚ͩͬʁ
2 ࣗݾհ ɾ໊લ ɹ- ͋͠͞Μ(@ashi_ssan) ɾॴଐ ɹ- Ϋϥεϝιουגࣜձࣾ ɹ- AWSࣄۀຊ෦
ίϯαϧςΟϯά෦ ɾུྺ ɹ- ৽ଔ→ಠཱܥSIer→ݱ৬(2021/09ʙ) ɾ͖ͳAWSαʔϏε ɹ- CloudShell ɹ- Systems Manager SessionManager/RunCommand ɾϒϩά
3 গ͚ͩ͠એ ɾMeety࢝Ί·ͨ͠ʢࠓʣ
4 ͡Ίʹ ͢͜ͱ ɾAWS Systems Manager(SSM)ͷηοτΞοϓํ๏ ͞ͳ͍͜ͱ ɾ֤SSMαʔϏεʹ͍ͭͯͷઆ໌
5 ͖͔͚ͬ
6 ͖͔͚ͬ Amazon LinuxܥͷΠϯελϯεʹ SSM Agent͕σϑΥϧτͰϓϦΠϯετʔϧ͞Ε͍ͯΔ (ެࣜυΩϡϝϯτΑΓ)
7 ͖͔͚ͬ SSM Agent͕ϓϦΠϯετʔϧ͞Ε͍ͯΔ = ଈ SSM ηοτΞοϓྃʂ = ηογϣϯϚωʔδϟʔՄೳ
Ͱʁʁ
8 ࣮ࡍʹͬͯΈͨ
9 ࣮ࡍʹͬͯΈͨ ࢀߟɿSSMηογϣϯϚωʔδϟʔͷCLIίϚϯυ $ aws ssm start-session --target <instance-id>
10 ࣮ࡍʹͬͯΈͨ
11 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰηογϣϯϚωʔδϟʔ ͑Δʁ
12 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͤΜʂ
13 ࣮ࡍʹͬͯΈͨ ݪҼɿ ɾIAMϩʔϧ(ΠϯελϯεϓϩϑΝΠϧ)͕ෆ →ʮAmazonSSMManagedInstanceCoreʯͷΞΫηεڐՄ͕ඞཁ ※ʮAmazonEC2RoleforSSMʯΞΫηεڐՄൣғ͕͍ͨΊඇਪ ࢀߟɿ https://docs.aws.amazon.com/ja_jp/systems-manager/latest/userguide/setup-instance-profile.html
14 ࣮ࡍʹͬͯΈͨ
15 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰηογϣϯϚωʔδϟʔ(ry
16 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͨ͠
17 ࣮ࡍʹͬͯΈͨ ࢀߟɿCLI͔Βଓ࣌ͷϩά bash-3.2$ aws ssm start-session --target i-0aa906b95f3c0cf2d Starting
session with SessionId: 1635351198-session-0790888dbb163125d sh-4.2$ sh-4.2$ ifconfig |grep "10\.0\." inet 10.0.0.24 netmask 255.255.255.0 broadcast 10.0.0.255 sh-4.2$ exit exit Exiting session with sessionId: 1635351198-session-0790888dbb163125d.
18 ࣮ࡍʹͬͯΈͨ
19 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰ(ry
20 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͤΜʂ
21 ࣮ࡍʹͬͯΈͨ ݪҼɿ SystemsManager APIͷૄ௨ܦ࿏͕ͳ͍ →ʮΠϯελϯε͔ΒSystemsManager APIͷΞτόϯ υͷ௨৴ܦ࿏(443ϙʔτ)ʯ͕ඞཁ (࣮ྫ) ①NAT
Gateway/Πϯελϯεܦ༝Ͱ௨৴͢Δ ②VPC Endpointܦ༝Ͱ௨৴͢Δ
22 ①NAT Gateway/Πϯελϯεܦ༝Ͱ௨৴͢Δ
23 ②VPC Endpointܦ༝Ͱ௨৴͢Δ
24 ɿ (ry
25 ͑ɿͰ͖·ͨ͠
26 ɾCLI͔Βܨ͛ͨ࣌ͷϩά bash-3.2$ aws ssm start-session --target i-0118cd8e6d13fc095 Starting session
with SessionId: 1635351198-session-0afb128b8b6169055 sh-4.2$ sh-4.2$ ifconfig |grep "10\.0\." inet 10.0.3.251 netmask 255.255.255.0 broadcast 10.0.3.255 sh-4.2$ exit exit Exiting session with sessionId: 1635351198-session-0790888dbb163125d.
27 ·ͱΊ
28 SSM Agent͕ϓϦΠϯετʔϧ͞Ε͍ͯΔ ≠ ଈ SSM ηοτΞοϓྃʂ ≠ ηογϣϯϚωʔδϟʔՄೳ
29 ࠓֶΜͩ͜ͱ ɾSSMηοτΞοϓͷνΣοΫϙΠϯτ ✅ SSM Agent͕Πϯετʔϧ͞Ε͍ͯΔ͔ʁ ✅ Πϯελϯεʹదͳݖݶ͕༩͞ΕͨIAMϩʔϧ͕Ξλον͞Ε͍ͯΔ͔ʁ ✅ Πϯελϯε͔ΒSSM
APIͷ௨৴ܦ࿏֬อ͞Ε͍ͯΔ͔ʁ
30 ࢀߟ ɾAWS BlackBelt https://d1.awsstatic.com/webinars/jp/pdf/services/20200212_AWSBlackBelt_SystemsManager_0214.pdf ɾηογϣϯϚωʔδϟʔͷϋϚΓͲ͜ΖΛύλʔϯ͝ͱʹཧ ͯ͠ΈΔ(DevelopersIO) https://dev.classmethod.jp/articles/session-manager-pattern/
31 Ҏ্ɻ
SiteGround - Reliable hosting with speed, security, and support you can count on.
hiashisan
panda_program
nakasho
sansan33
overflowinc
knj
kanyamaguc
kawauso
jacopen
hironobuiga
techniczna
baasie
helmedeiros
lemiorhan
sergeychernyshev
kimpetersen
cassininazir
apolaine
inesmontani
codingconduct
thoeni
trallard
