Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
JAWS-UG_CLI_Setup_SSM_20211028
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
h-ashisan
October 28, 2021
Technology
0
960
JAWS-UG_CLI_Setup_SSM_20211028
JAWS-UG CLI専門支部で2021年10月28日に「【初心者向け】Systems Managerってどう始めるんだっけ?」というタイトルで発表したLTです。
h-ashisan
October 28, 2021
Tweet
Share
More Decks by h-ashisan
See All by h-ashisan
regrowth_tokyo_2025_securityagent
hiashisan
0
390
Tokyo_reInforce_2025_recap_iam_access_analyzer
hiashisan
0
330
OpsJAWS34_CloudTrailLake_for_Organizations
hiashisan
0
730
Classmethod_regrowth_2024_tokyo_security_identity_governance_summary
hiashisan
0
1.6k
2024/11/29_失敗談から学ぶ! エンジニア向けre:Invent攻略アンチパターン集
hiashisan
0
750
20241015 Toranomon Tech Hub#1 Service Catalog使ってみた
hiashisan
0
680
Practical-AWS-Security-measures-you-can-implement-now
hiashisan
0
780
20240724_cm_odyssey_hibiyatech
hiashisan
0
530
[2024最新版]AWS Control Towerを使ったセキュアなマルチアカウント環境の作り方
hiashisan
0
1.4k
Other Decks in Technology
See All in Technology
15 years with Rails and DDD (AI Edition)
andrzejkrzywda
0
200
usermode linux without MMU - fosdem2026 kernel devroom
thehajime
0
240
OWASP Top 10:2025 リリースと 少しの日本語化にまつわる裏話
okdt
PRO
3
820
ClickHouseはどのように大規模データを活用したAIエージェントを全社展開しているのか
mikimatsumoto
0
260
外部キー制約の知っておいて欲しいこと - RDBMSを正しく使うために必要なこと / FOREIGN KEY Night
soudai
PRO
12
5.6k
Frontier Agents (Kiro autonomous agent / AWS Security Agent / AWS DevOps Agent) の紹介
msysh
3
180
Claude_CodeでSEOを最適化する_AI_Ops_Community_Vol.2__マーケティングx_AIはここまで進化した.pdf
riku_423
2
600
Introduction to Sansan for Engineers / エンジニア向け会社紹介
sansan33
PRO
6
68k
OpenShiftでllm-dを動かそう!
jpishikawa
0
130
ブロックテーマでサイトをリニューアルした話 / 2026-01-31 Kansai WordPress Meetup
torounit
0
470
Data Hubグループ 紹介資料
sansan33
PRO
0
2.7k
20260204_Midosuji_Tech
takuyay0ne
1
160
Featured
See All Featured
Crafting Experiences
bethany
1
49
Fantastic passwords and where to find them - at NoRuKo
philnash
52
3.6k
The B2B funnel & how to create a winning content strategy
katarinadahlin
PRO
1
280
Exploring the relationship between traditional SERPs and Gen AI search
raygrieselhuber
PRO
2
3.6k
HU Berlin: Industrial-Strength Natural Language Processing with spaCy and Prodigy
inesmontani
PRO
0
220
From π to Pie charts
rasagy
0
120
AI Search: Where Are We & What Can We Do About It?
aleyda
0
7k
RailsConf 2023
tenderlove
30
1.3k
svc-hook: hooking system calls on ARM64 by binary rewriting
retrage
1
100
Applied NLP in the Age of Generative AI
inesmontani
PRO
4
2k
GitHub's CSS Performance
jonrohan
1032
470k
Typedesign – Prime Four
hannesfritz
42
2.9k
Transcript
1 ʲॳ৺ऀ͚ʳ Systems ManagerͬͯͲ͏࢝ΊΔΜ͚ͩͬʁ
2 ࣗݾհ ɾ໊લ ɹ- ͋͠͞Μ(@ashi_ssan) ɾॴଐ ɹ- Ϋϥεϝιουגࣜձࣾ ɹ- AWSࣄۀຊ෦
ίϯαϧςΟϯά෦ ɾུྺ ɹ- ৽ଔ→ಠཱܥSIer→ݱ৬(2021/09ʙ) ɾ͖ͳAWSαʔϏε ɹ- CloudShell ɹ- Systems Manager SessionManager/RunCommand ɾϒϩά
3 গ͚ͩ͠એ ɾMeety࢝Ί·ͨ͠ʢࠓʣ
4 ͡Ίʹ ͢͜ͱ ɾAWS Systems Manager(SSM)ͷηοτΞοϓํ๏ ͞ͳ͍͜ͱ ɾ֤SSMαʔϏεʹ͍ͭͯͷઆ໌
5 ͖͔͚ͬ
6 ͖͔͚ͬ Amazon LinuxܥͷΠϯελϯεʹ SSM Agent͕σϑΥϧτͰϓϦΠϯετʔϧ͞Ε͍ͯΔ (ެࣜυΩϡϝϯτΑΓ)
7 ͖͔͚ͬ SSM Agent͕ϓϦΠϯετʔϧ͞Ε͍ͯΔ = ଈ SSM ηοτΞοϓྃʂ = ηογϣϯϚωʔδϟʔՄೳ
Ͱʁʁ
8 ࣮ࡍʹͬͯΈͨ
9 ࣮ࡍʹͬͯΈͨ ࢀߟɿSSMηογϣϯϚωʔδϟʔͷCLIίϚϯυ $ aws ssm start-session --target <instance-id>
10 ࣮ࡍʹͬͯΈͨ
11 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰηογϣϯϚωʔδϟʔ ͑Δʁ
12 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͤΜʂ
13 ࣮ࡍʹͬͯΈͨ ݪҼɿ ɾIAMϩʔϧ(ΠϯελϯεϓϩϑΝΠϧ)͕ෆ →ʮAmazonSSMManagedInstanceCoreʯͷΞΫηεڐՄ͕ඞཁ ※ʮAmazonEC2RoleforSSMʯΞΫηεڐՄൣғ͕͍ͨΊඇਪ ࢀߟɿ https://docs.aws.amazon.com/ja_jp/systems-manager/latest/userguide/setup-instance-profile.html
14 ࣮ࡍʹͬͯΈͨ
15 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰηογϣϯϚωʔδϟʔ(ry
16 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͨ͠
17 ࣮ࡍʹͬͯΈͨ ࢀߟɿCLI͔Βଓ࣌ͷϩά bash-3.2$ aws ssm start-session --target i-0aa906b95f3c0cf2d Starting
session with SessionId: 1635351198-session-0790888dbb163125d sh-4.2$ sh-4.2$ ifconfig |grep "10\.0\." inet 10.0.0.24 netmask 255.255.255.0 broadcast 10.0.0.255 sh-4.2$ exit exit Exiting session with sessionId: 1635351198-session-0790888dbb163125d.
18 ࣮ࡍʹͬͯΈͨ
19 ࣮ࡍʹͬͯΈͨ ɿ ͜ͷߏͰ(ry
20 ࣮ࡍʹͬͯΈͨ ͑ɿͰ͖·ͤΜʂ
21 ࣮ࡍʹͬͯΈͨ ݪҼɿ SystemsManager APIͷૄ௨ܦ࿏͕ͳ͍ →ʮΠϯελϯε͔ΒSystemsManager APIͷΞτόϯ υͷ௨৴ܦ࿏(443ϙʔτ)ʯ͕ඞཁ (࣮ྫ) ①NAT
Gateway/Πϯελϯεܦ༝Ͱ௨৴͢Δ ②VPC Endpointܦ༝Ͱ௨৴͢Δ
22 ①NAT Gateway/Πϯελϯεܦ༝Ͱ௨৴͢Δ
23 ②VPC Endpointܦ༝Ͱ௨৴͢Δ
24 ɿ (ry
25 ͑ɿͰ͖·ͨ͠
26 ɾCLI͔Βܨ͛ͨ࣌ͷϩά bash-3.2$ aws ssm start-session --target i-0118cd8e6d13fc095 Starting session
with SessionId: 1635351198-session-0afb128b8b6169055 sh-4.2$ sh-4.2$ ifconfig |grep "10\.0\." inet 10.0.3.251 netmask 255.255.255.0 broadcast 10.0.3.255 sh-4.2$ exit exit Exiting session with sessionId: 1635351198-session-0790888dbb163125d.
27 ·ͱΊ
28 SSM Agent͕ϓϦΠϯετʔϧ͞Ε͍ͯΔ ≠ ଈ SSM ηοτΞοϓྃʂ ≠ ηογϣϯϚωʔδϟʔՄೳ
29 ࠓֶΜͩ͜ͱ ɾSSMηοτΞοϓͷνΣοΫϙΠϯτ ✅ SSM Agent͕Πϯετʔϧ͞Ε͍ͯΔ͔ʁ ✅ Πϯελϯεʹదͳݖݶ͕༩͞ΕͨIAMϩʔϧ͕Ξλον͞Ε͍ͯΔ͔ʁ ✅ Πϯελϯε͔ΒSSM
APIͷ௨৴ܦ࿏֬อ͞Ε͍ͯΔ͔ʁ
30 ࢀߟ ɾAWS BlackBelt https://d1.awsstatic.com/webinars/jp/pdf/services/20200212_AWSBlackBelt_SystemsManager_0214.pdf ɾηογϣϯϚωʔδϟʔͷϋϚΓͲ͜ΖΛύλʔϯ͝ͱʹཧ ͯ͠ΈΔ(DevelopersIO) https://dev.classmethod.jp/articles/session-manager-pattern/
31 Ҏ্ɻ
hiashisan
andrzejkrzywda
thehajime
okdt
mikimatsumoto
soudai
msysh
riku_423
sansan33
jpishikawa
torounit
takuyay0ne
bethany
philnash
katarinadahlin
raygrieselhuber
inesmontani
rasagy
aleyda
tenderlove
retrage
jonrohan
hannesfritz
