Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
JAWS-UG_CLI_Setup_SSM_20211028
Search
h-ashisan
October 28, 2021
Technology
0
770
JAWS-UG_CLI_Setup_SSM_20211028
JAWS-UG CLI専門支部で2021年10月28日に「【初心者向け】Systems Managerってどう始めるんだっけ?」というタイトルで発表したLTです。
h-ashisan
October 28, 2021
Tweet
Share
More Decks by h-ashisan
See All by h-ashisan
AIOpsを活用してAWS監視を体験してみた 〜EC2も監視できるよ〜
hiashisan
1
730
JAWS-UG_YOKOHAMA_20231204
hiashisan
0
720
20231025_HibiyaTech#1_SecurityLake
hiashisan
0
480
20231007_JAWS-FESTA-2023-Kyushu_omatsuri_ashisan
hiashisan
0
600
20230930_JAWS-FESTA_REJECT-CON_ControlTower
hiashisan
0
1.1k
20230829_ccoe_seminar_session_3
hiashisan
0
710
20230825_SecurityLake_freshmen_LT
hiashisan
0
690
dayone-Classmethodcloudguideline-20230411
hiashisan
0
810
20230215_JAWS-UG_asakai_ControlTower
hiashisan
2
2.3k
Other Decks in Technology
See All in Technology
Databricks:『生成AI World Cup』のご案内
databricksjapan
2
160
Tableau事例紹介 / Tableau Case Study of Eureka
kazuya_araki_tokyo
1
180
ワールドカフェI /チューターを改良する / World Café I and Improving the Tutors
ks91
PRO
0
110
ServiceNow Knowledge Learning Rise up
manarobot
0
190
NgRx Signal Store
rainerhahnekamp
0
140
Algyan イベント振り返り
linyixian
0
200
アクセシビリティを考慮したUI/CSSフレームワーク・ライブラリ選定
yajihum
2
980
Java EE/Jakarta EEの現状と将来―クラウドネイティブ時代にJava EEは対応できるのか?―
takakiyo
1
120
AWS認定資格を取得したので、初めてマネコンを触った時を振り返ってみた。
ainatsuptr
2
100
Reducing Cross-Zone Egress at Spotify with Custom gRPC Load Balancing Recap
koh_naga
0
180
AOAI をきっかけに 社内の Azure 管理を見直した話
recruitengineers
PRO
1
180
自動生成を活用した、運用保守コストを抑える Error/Alert/Runbook の一元集約管理 / Centralized management of Error/Alert/Runbook to minimize operational costs using automated code generation
biwashi
12
2.3k
Featured
See All Featured
Fontdeck: Realign not Redesign
paulrobertlloyd
76
4.9k
A Philosophy of Restraint
colly
196
16k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
20
1.6k
Become a Pro
speakerdeck
PRO
10
4.5k
Keith and Marios Guide to Fast Websites
keithpitt
408
22k
Producing Creativity
orderedlist
PRO
336
39k
Code Review Best Practice
trishagee
54
15k
Side Projects
sachag
451
41k
Designing for humans not robots
tammielis
248
25k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
18
6.9k
Clear Off the Table
cherdarchuk
83
310k
The Power of CSS Pseudo Elements
geoffreycrofte
59
5k
Transcript
1 ʲॳ৺ऀ͚ʳ Systems ManagerͬͯͲ͏࢝ΊΔΜ͚ͩͬʁ
2 ࣗݾհ ɾ໊લ ɹ- ͋͠͞Μ(@ashi_ssan) ɾॴଐ ɹ- Ϋϥεϝιουגࣜձࣾ ɹ- AWSࣄۀຊ෦
ίϯαϧςΟϯά෦ ɾུྺ ɹ- ৽ଔ→ಠཱܥSIer→ݱ৬(2021/09ʙ) ɾ͖ͳAWSαʔϏε ɹ- CloudShell ɹ- Systems Manager SessionManager/RunCommand ɾϒϩά
3 গ͚ͩ͠એ ɾMeety࢝Ί·ͨ͠ʢࠓʣ
4 ͡Ίʹ ͢͜ͱ ɾAWS Systems Manager(SSM)ͷηοτΞοϓํ๏ ͞ͳ͍͜ͱ ɾ֤SSMαʔϏεʹ͍ͭͯͷઆ໌
5 ͖͔͚ͬ
6 ͖͔͚ͬ Amazon LinuxܥͷΠϯελϯεʹ SSM Agent͕σϑΥϧτͰϓϦΠϯετʔϧ͞Ε͍ͯΔ (ެࣜυΩϡϝϯτΑΓ)
7 ͖͔͚ͬ SSM Agent͕ϓϦΠϯετʔϧ͞Ε͍ͯΔ = ଈ SSM ηοτΞοϓྃʂ = ηογϣϯϚωʔδϟʔՄೳ
Ͱʁʁ
8 ࣮ࡍʹͬͯΈͨ
9 ࣮ࡍʹͬͯΈͨ ࢀߟɿSSMηογϣϯϚωʔδϟʔͷCLIίϚϯυ $ aws ssm start-session --target <instance-id>
10 ࣮ࡍʹͬͯΈͨ
11 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰηογϣϯϚωʔδϟʔ ͑Δʁ
12 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͤΜʂ
13 ࣮ࡍʹͬͯΈͨ ݪҼɿ ɾIAMϩʔϧ(ΠϯελϯεϓϩϑΝΠϧ)͕ෆ →ʮAmazonSSMManagedInstanceCoreʯͷΞΫηεڐՄ͕ඞཁ ※ʮAmazonEC2RoleforSSMʯΞΫηεڐՄൣғ͕͍ͨΊඇਪ ࢀߟɿ https://docs.aws.amazon.com/ja_jp/systems-manager/latest/userguide/setup-instance-profile.html
14 ࣮ࡍʹͬͯΈͨ
15 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰηογϣϯϚωʔδϟʔ(ry
16 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͨ͠
17 ࣮ࡍʹͬͯΈͨ ࢀߟɿCLI͔Βଓ࣌ͷϩά bash-3.2$ aws ssm start-session --target i-0aa906b95f3c0cf2d Starting
session with SessionId: 1635351198-session-0790888dbb163125d sh-4.2$ sh-4.2$ ifconfig |grep "10\.0\." inet 10.0.0.24 netmask 255.255.255.0 broadcast 10.0.0.255 sh-4.2$ exit exit Exiting session with sessionId: 1635351198-session-0790888dbb163125d.
18 ࣮ࡍʹͬͯΈͨ
19 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰ(ry
20 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͤΜʂ
21 ࣮ࡍʹͬͯΈͨ ݪҼɿ SystemsManager APIͷૄ௨ܦ࿏͕ͳ͍ →ʮΠϯελϯε͔ΒSystemsManager APIͷΞτόϯ υͷ௨৴ܦ࿏(443ϙʔτ)ʯ͕ඞཁ (࣮ྫ) ①NAT
Gateway/Πϯελϯεܦ༝Ͱ௨৴͢Δ ②VPC Endpointܦ༝Ͱ௨৴͢Δ
22 ①NAT Gateway/Πϯελϯεܦ༝Ͱ௨৴͢Δ
23 ②VPC Endpointܦ༝Ͱ௨৴͢Δ
24 ɿ (ry
25 ͑ɿͰ͖·ͨ͠
26 ɾCLI͔Βܨ͛ͨ࣌ͷϩά bash-3.2$ aws ssm start-session --target i-0118cd8e6d13fc095 Starting session
with SessionId: 1635351198-session-0afb128b8b6169055 sh-4.2$ sh-4.2$ ifconfig |grep "10\.0\." inet 10.0.3.251 netmask 255.255.255.0 broadcast 10.0.3.255 sh-4.2$ exit exit Exiting session with sessionId: 1635351198-session-0790888dbb163125d.
27 ·ͱΊ
28 SSM Agent͕ϓϦΠϯετʔϧ͞Ε͍ͯΔ ≠ ଈ SSM ηοτΞοϓྃʂ ≠ ηογϣϯϚωʔδϟʔՄೳ
29 ࠓֶΜͩ͜ͱ ɾSSMηοτΞοϓͷνΣοΫϙΠϯτ ✅ SSM Agent͕Πϯετʔϧ͞Ε͍ͯΔ͔ʁ ✅ Πϯελϯεʹదͳݖݶ͕༩͞ΕͨIAMϩʔϧ͕Ξλον͞Ε͍ͯΔ͔ʁ ✅ Πϯελϯε͔ΒSSM
APIͷ௨৴ܦ࿏֬อ͞Ε͍ͯΔ͔ʁ
30 ࢀߟ ɾAWS BlackBelt https://d1.awsstatic.com/webinars/jp/pdf/services/20200212_AWSBlackBelt_SystemsManager_0214.pdf ɾηογϣϯϚωʔδϟʔͷϋϚΓͲ͜ΖΛύλʔϯ͝ͱʹཧ ͯ͠ΈΔ(DevelopersIO) https://dev.classmethod.jp/articles/session-manager-pattern/
31 Ҏ্ɻ