Ensure all EC2 instances are managed by SSM

Other Security Rules


Systems Manager (SSM) helps you maintain security and compliance by scanning your managed instances and reporting on or taking corrective action on any policy violations that it detects.

In cases where SSM is enabled for a specific region, but EC2 instances are not managed, they will not be monitored from any kind of SSM perspective.

Configure EC2 instances for use with SMM via the AWS Management Console

Step 1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

Step 2. In the navigation pane, under "Instances" click on Instances.

Step 3. Navigate to and choose your EC2 instance from the list.

Step 4. In the "Actions" menu, click on Security, Modify IAM role.

Step 5. For the IAM role, select the instance profile you created for that perspective.