Skip to content
This repository has been archived by the owner on Jun 3, 2024. It is now read-only.

Latest commit

 

History

History

aws_ec2_ssm

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
.terraform.lock.hcl
.terraform.lock.hcl
 
 
README.md
README.md
 
 
bastions.tf
bastions.tf
 
 
iam.tf
iam.tf
 
 
impl.py
impl.py
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
variables.tf
variables.tf
 
 
versions.tf
versions.tf
 
 

README.md

JIT EC2 SSH Access with AWS Systems Manager Session Manager

This example illustrates how to implement a Sym Flow that uses an AWS IAM Identity Center (AWS SSO) Strategy to grant users temporary SSH access to an EC2 Instance.

The example relies on AWS Systems Manager Session Manager (Session Manager).

Test Bastion Instances

You can provision test bastion instances to validate the SSH setup by setting bastions_enabled to true.

Note that if you enable test instances, you also need to configure the private_subnet_id variable.

Blog

We discuss this example in more detail on our blog.

For the basics on our AWS IAM Identity Center Strategy, check out a step-by-step tutorial here.

About Sym

This workflow is just one example of how Sym Implementers use the Sym SDK to create Sym Flows.