This example illustrates how to implement a Sym Flow that uses an AWS IAM Identity Center (AWS SSO) Strategy to grant users temporary SSH access to an EC2 Instance.
The example relies on AWS Systems Manager Session Manager (Session Manager).
You can provision test bastion instances to validate the SSH setup by setting bastions_enabled
to true
.
Note that if you enable test instances, you also need to configure the private_subnet_id
variable.
We discuss this example in more detail on our blog.
For the basics on our AWS IAM Identity Center Strategy, check out a step-by-step tutorial here.
This workflow is just one example of how Sym Implementers use the Sym SDK to create Sym Flows.