\n\nSending a Command via AWS CLI<\/p>\n\n\n\n
We must either have administrator privileges on the instances we want to configure or we must have been granted the appropriate permission in IAM.<\/p>\n\n\n\n
The following command returns a list of Linux and Windows documents:<\/p>\n\n\n\n
$ aws ssm list-documents\nDOCUMENTIDENTIFIERS\tCommand\t1\tAWS-ApplyPatchBaseline\tAmazon\t1.2\nPLATFORMTYPES\tWindows\nPLATFORMTYPES\tLinux\nDOCUMENTIDENTIFIERS\tCommand\t1\tAWS-ConfigureAWSPackage\tAmazon\t2.0\nPLATFORMTYPES\tWindows\nPLATFORMTYPES\tLinux\n...\n<\/pre>\n\n\n\nTo check if an instance is ready to receive commands:<\/p>\n\n\n\n
$ aws ssm describe-instance-information --output text --query \"InstanceInformationList[*]\"\n2.0.796.0\tip-172-31-38-206\t172.31.38.206\ti-0698042a954420857\tTrue\t1496457091.34\tOnline\tUbuntu\tLinux\t16.04\tEC2Instance\n<\/pre>\n\n\n\n<\/p>\n\n\n\n
Using Run Command and the AWS-RunShellScript document, we can execute any command or script on an EC2 instance as if we were logged on locally.<\/p>\n\n\n\n
To view the description and available parameters, we can use the following command to view a description of the Systems Manager JSON document:<\/p>\n\n\n\n
$ aws ssm describe-document --name \"AWS-RunShellScript\" --query \"[Document.Name,Document.Description]\"\nAWS-RunShellScript\tRun a shell script or specify the commands to run.\n<\/pre>\n\n\n\nWe can use the following command to view the available parameters and details about those parameters:<\/p>\n\n\n\n
$ aws ssm describe-document --name \"AWS-RunShellScript\" --query \"Document.Parameters[*]\"\n\t(Required) Specify a shell script or a command to run.\tcommands\tStringList\n\t(Optional) The path to the working directory on your instance.\tworkingDirectory\tString\n3600\t(Optional) The time in seconds for a command to complete before it is considered to have failed. Default is 3600 (1 hour). Maximum is 28800 (8 hours).\texecutionTimeout\tString\n<\/pre>\n\n\n\nWe may want to use the following command to get IP information for an instance:<\/p>\n\n\n\n
$ aws ssm send-command --instance-ids \"i-0698042a954420857\" --document-name \"AWS-RunShellScript\" --comment \"IP config\" --parameters commands=ifconfig --output text\nCOMMAND\te4d8a901-34b7-480d-9e47-f0a71179be64\tIP config\t0\tAWS-RunShellScript\t0\t1496465253.78\t50\t0\t\t1496458053.78\t\tPending\tPending\t1\nINSTANCEIDS\ti-0698042a954420857\nNOTIFICATIONCONFIG\t\t\nCOMMANDS\tifconfig\n<\/pre>\n\n\n\nThe following command uses the Command ID that was returned from the previous command to get the details and response data of the command execution. The system returns the response data if the command completed. If the command execution shows “Pending” we will need to execute this command again to see the response data:<\/p>\n\n\n\n
$ aws ssm list-command-invocations --command-id \"e4d8a901-34b7-480d-9e47-f0a71179be64\" --details\n<\/pre>\n\n\n\nThe following command displays the default user account running the commands:<\/p>\n\n\n\n
$ sh_command_id=$(aws ssm send-command --instance-ids \"i-0698042a954420857\" --document-name \"AWS-RunShellScript\" --comment \"Demo run shell script on Linux Instance\" --parameters commands=whoami --output text --query \"Command.CommandId\")\n<\/pre>\n\n\n\nThe following command uses the Command ID to get the status of the command execution on the instance. This example uses the Command ID that was returned in the previous command:<\/p>\n\n\n\n
$ aws ssm list-commands --command-id $sh_command_id\nCOMMANDS\t136b1a05-6724-45f1-a23b-f98062fca64d\tDemo run shell script on Linux Instance\t1\tAWS-RunShellScript\t0\t1496465641.83\t50\t0\t\t\t1496458441.83\t\tSuccess\tSuccess\t1\nINSTANCEIDS\ti-0698042a954420857\nNOTIFICATIONCONFIG\t\t\nCOMMANDS\twhoami\n<\/pre>\n\n\n\nThe following command uses the Command ID from the previous command to get the status of the command execution on a per instance basis:<\/p>\n\n\n\n
$ aws ssm list-command-invocations --command-id $sh_command_id --details<\/pre>\n","protected":false},"excerpt":{"rendered":"\n What is Simple Systems Manager<\/p>\n
Amazon EC2 Simple Systems Manager (SSM) is an Amazon Web Services tool that allows us to automatically configure virtual servers in a cloud or in on-premises data center.<\/p>\n
We can use scripts, commands or the Elastic Compute Cloud (EC2) console to manage EC2 instances, virtual machines (VMs) or […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[49],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7850"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7850"}],"version-history":[{"count":4,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7850\/revisions"}],"predecessor-version":[{"id":7878,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7850\/revisions\/7878"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7850"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7850"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7850"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/SSM-Commands.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/SetRoleName-Review.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/RoleCreated.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/AmazonEC2RoleforSSM.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/1_P1V5a3iC14yL1kkpCo5UTQ-1.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/1_ju3GQygCf5gXPbGnx3EqqA.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/SMS-Menu-Run-Command.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/Run-a-command.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/OutputConsole.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/rmohan.com\/wp-content\/uploads\/2019\/06\/ViewOutput.png\")
<\/figure>\n\n\n\n