{"id":82,"date":"2022-03-14T17:00:19","date_gmt":"2022-03-14T08:00:19","guid":{"rendered":"https:\/\/baresupport.jp\/blog\/?p=82"},"modified":"2024-03-11T13:39:20","modified_gmt":"2024-03-11T04:39:20","slug":"session-manager%e3%82%92%e5%88%a9%e7%94%a8%e3%81%97%e3%81%a6ec2%e3%81%b8%e3%82%bb%e3%82%ad%e3%83%a5%e3%82%a2%e3%81%ab%e6%8e%a5%e7%b6%9a%e3%81%99%e3%82%8b%e6%96%b9%e6%b3%95%ef%bf%bc","status":"publish","type":"post","link":"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/","title":{"rendered":"Session Manager\u3092\u5229\u7528\u3057\u3066EC2\u3078\u30bb\u30ad\u30e5\u30a2\u306b\u63a5\u7d9a\u3059\u308b\u65b9\u6cd5\ufffc"},"content":{"rendered":"\n<p>AWS Systems Manager (\u65e7SSM) \u3068\u306f\u3001AWS \u5185\u30ea\u30bd\u30fc\u30b9\u306e\u69cb\u6210\uff0f\u5909\u66f4\u7ba1\u7406\u3084\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u30d1\u30e9\u30e1\u30fc\u30bf\u306e\u96c6\u4e2d\u7ba1\u7406\u306a\u3069\u3001\u3055\u307e\u3056\u307e\u306a\u7ba1\u7406\u7cfb\u6a5f\u80fd\u304c\u96c6\u5408\u3057\u305f\u30b5\u30fc\u30d3\u30b9\u3067\u3059\u3002<br>\u3053\u306e AWS Systems Manager \u5185\u306b\u300cSession Manager\u300d\u3068\u3044\u3046\u30b5\u30fc\u30d3\u30b9\u304c\u3042\u308a\u307e\u3059\u3002Session Manager\u306f AWS \u5185\u3067 EC2 \u3092\u5229\u7528\u3057\u3066\u3044\u308b\u74b0\u5883\u306b\u304a\u3044\u3066\u3001\u30e1\u30f3\u30c6\u30ca\u30f3\u30b9\u6027\u3068\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u89b3\u70b9\u304b\u3089\u975e\u5e38\u306b\u512a\u4f4d\u6027\u306e\u9ad8\u3044\u30b5\u30fc\u30d3\u30b9\u3068\u3044\u3048\u307e\u3059\u3002<br>\u672c\u8a18\u4e8b\u3067\u306f\u3001Session Manager\u3092\u5229\u7528\u3057\u3066EC2\u306e\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078\u30bb\u30ad\u30e5\u30a2\u306b\u63a5\u7d9a\u3059\u308b\u65b9\u6cd5\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_76 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\"><p class=\"ez-toc-title\" style=\"cursor:inherit\">\u3053\u306e\u8a18\u4e8b\u306e\u76ee\u6b21<\/p>\n<\/div><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#Session_Manager_%E3%81%A7%E3%81%A7%E3%81%8D%E3%82%8B%E3%81%93%E3%81%A8\" >Session Manager \u3067\u3067\u304d\u308b\u3053\u3068<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#Session_Manager_%E3%82%92%E5%88%A9%E7%94%A8%E3%81%99%E3%82%8B%E4%B8%8A%E3%81%A7%E7%9F%A5%E3%81%A3%E3%81%A6%E3%81%8A%E3%81%8F%E3%81%B9%E3%81%8D%E3%81%93%E3%81%A8\" >Session Manager \u3092\u5229\u7528\u3059\u308b\u4e0a\u3067\u77e5\u3063\u3066\u304a\u304f\u3079\u304d\u3053\u3068<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#%E3%82%BB%E3%83%83%E3%83%88%E3%82%A2%E3%83%83%E3%83%97%E6%89%8B%E9%A0%86\" >\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u624b\u9806<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#0_%E5%89%8D%E6%8F%90\" >0. \u524d\u63d0<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#1_EC2_%E3%82%A4%E3%83%B3%E3%82%B9%E3%82%BF%E3%83%B3%E3%82%B9%E4%B8%8A%E3%81%A7%E3%81%AE%E6%89%8B%E9%A0%86\" >1. EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u4e0a\u3067\u306e\u624b\u9806<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#2_IAM_%E3%81%AE%E8%A8%AD%E5%AE%9A\" >2. IAM \u306e\u8a2d\u5b9a<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#3-1_AWS_%E3%83%9E%E3%83%8D%E3%82%B8%E3%83%A1%E3%83%B3%E3%83%88%E3%82%B3%E3%83%B3%E3%82%BD%E3%83%BC%E3%83%AB%E3%81%8B%E3%82%89%E6%8E%A5%E7%B6%9A%E3%81%99%E3%82%8B%E5%A0%B4%E5%90%88\" >3-1. AWS \u30de\u30cd\u30b8\u30e1\u30f3\u30c8\u30b3\u30f3\u30bd\u30fc\u30eb\u304b\u3089\u63a5\u7d9a\u3059\u308b\u5834\u5408<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#3-2_SSH_%E3%81%A7%E6%8E%A5%E7%B6%9A%E3%81%99%E3%82%8B%E5%A0%B4%E5%90%88\" >3-2. SSH \u3067\u63a5\u7d9a\u3059\u308b\u5834\u5408<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/baresupport.jp\/blog\/2022\/03\/14\/82\/#%E3%81%BE%E3%81%A8%E3%82%81\" >\u307e\u3068\u3081<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"wp-block-heading\" id=\"session-manager-\u3067\u3067\u304d\u308b\u3053\u3068\"><span class=\"ez-toc-section\" id=\"Session_Manager_%E3%81%A7%E3%81%A7%E3%81%8D%E3%82%8B%E3%81%93%E3%81%A8\"><\/span>Session Manager \u3067\u3067\u304d\u308b\u3053\u3068<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u4ee3\u8868\u7684\u306a\u5229\u7528\u65b9\u6cd5\u306b\u306f\u4ee5\u4e0b\u304c\u6319\u3052\u3089\u308c\u307e\u3059\u3002<\/p>\n\n\n\n<ol class=\"wp-block-list\"><li>AWS \u30de\u30cd\u30b8\u30e1\u30f3\u30c8\u30b3\u30f3\u30bd\u30fc\u30eb\u304b\u3089 EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078\u30b3\u30f3\u30bd\u30fc\u30eb\u30ed\u30b0\u30a4\u30f3\u3067\u304d\u308b<\/li><li>Session Manager \u3092\u7d4c\u7531\u3057\u3066 EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078 SSH \u63a5\u7d9a\u3067\u304d\u308b<\/li><\/ol>\n\n\n\n<p>\u4e0a\u8a18\u306e\u30e1\u30ea\u30c3\u30c8\u306f\u4ee5\u4e0b\u3068\u306a\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>\u8e0f\u307f\u53f0\u30b5\u30fc\u30d0\u30fc\u3092\u7528\u610f\u3059\u308b\u5fc5\u8981\u304c\u306a\u3044<\/li><li>\u5916\u90e8\uff08\u4e3b\u306b\u30a4\u30f3\u30bf\u30fc\u30cd\u30c3\u30c8\uff09\u306b\u5bfe\u3057\u3066\u30e1\u30f3\u30c6\u30ca\u30f3\u30b9\u7d4c\u8def\u3092\u4e8b\u524d\u306b\u6e96\u5099\u3059\u308b\u5fc5\u8981\u304c\u306a\u3044<\/li><li>EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078 PublicIP\/ElasticIP \u3092\u30a2\u30b5\u30a4\u30f3\u3059\u308b\u5fc5\u8981\u304c\u306a\u3044<\/li><\/ul>\n\n\n\n<p>\u5177\u4f53\u7684\u306a Before\/After \u306e\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u8a2d\u8a08\u30a4\u30e1\u30fc\u30b8\u3092\u56f3\u793a\u3057\u307e\u3059\u3002<br>Session Manager \u3092\u5229\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u975e\u5e38\u306b\u30b7\u30f3\u30d7\u30eb\u306a\u30a2\u30fc\u30ad\u30c6\u30af\u30c1\u30e3\u3092\u5b9f\u73fe\u53ef\u80fd\u3067\u3059\u3002<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"893\" src=\"https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-1024x893.png\" alt=\"\" class=\"wp-image-83\" srcset=\"https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-1024x893.png 1024w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-300x262.png 300w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-768x670.png 768w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-1536x1339.png 1536w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-2048x1786.png 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"session-manager-\u3092\u5229\u7528\u3059\u308b\u4e0a\u3067\u77e5\u3063\u3066\u304a\u304f\u3079\u304d\u3053\u3068\"><span class=\"ez-toc-section\" id=\"Session_Manager_%E3%82%92%E5%88%A9%E7%94%A8%E3%81%99%E3%82%8B%E4%B8%8A%E3%81%A7%E7%9F%A5%E3%81%A3%E3%81%A6%E3%81%8A%E3%81%8F%E3%81%B9%E3%81%8D%E3%81%93%E3%81%A8\"><\/span>Session Manager \u3092\u5229\u7528\u3059\u308b\u4e0a\u3067\u77e5\u3063\u3066\u304a\u304f\u3079\u304d\u3053\u3068<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Session Manager \u3092\u5229\u7528\u3059\u308b\u4e0a\u3067\u8a2d\u8a08\u4e0a\u8003\u616e\u3057\u3066\u304a\u304f\u3079\u304d\u70b9\u3092\u3044\u304f\u3064\u304b\u5217\u6319\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"1-ec2-\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078-ssm-agent-\u3092\u5c0e\u5165\u3057\u7a3c\u50cd\u3055\u305b\u3066\u304a\u304f\">1. EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078 SSM Agent \u3092\u5c0e\u5165\u3057\u7a3c\u50cd\u3055\u305b\u3066\u304a\u304f<\/h4>\n\n\n\n<p>\u3053\u308c\u306f Linux \u3092\u5229\u7528\u3059\u308b\u5834\u5408\u3001Amazon Linux 2 \u3092 AMI \u3068\u3057\u3066\u5229\u7528\u3057\u3066\u3044\u308c\u3070\u30c7\u30d5\u30a9\u30eb\u30c8\u3067\u7a3c\u50cd\u3057\u3066\u3044\u308b\u305f\u3081\u3001\u3068\u304f\u306b\u8003\u616e\u3059\u308b\u5fc5\u8981\u306f\u3042\u308a\u307e\u305b\u3093\u3002<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"2-ssm-user-\u3067\u30ed\u30b0\u30a4\u30f3\u3059\u308b\">2. ssm-user \u3067\u30ed\u30b0\u30a4\u30f3\u3059\u308b<\/h4>\n\n\n\n<p>AWS \u30de\u30cd\u30b8\u30e1\u30f3\u30c8\u30b3\u30f3\u30bd\u30fc\u30eb\u304b\u3089\u30ed\u30b0\u30a4\u30f3\u3057\u305f\u5834\u5408\u3001ssm-user \u3067\u30ed\u30b0\u30a4\u30f3\u3059\u308b\u3053\u3068\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u307e\u305f\u3001\u30ed\u30b0\u30a4\u30f3\u5f8c\u306e\u30ab\u30ec\u30f3\u30c8\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u304c\u300c\/usr\/bin\u300d\u306b\u306a\u308b\u305f\u3081\u3001\u300csudo\u300d\u306a\u3069\u3067\u9069\u5207\u306a\u30e6\u30fc\u30b6\u3078\u5207\u308a\u66ff\u3048\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"3-\u53b3\u5bc6\u306a\u30ed\u30b0\u30a4\u30f3\u30e6\u30fc\u30b6\u306e\u30b3\u30f3\u30c8\u30ed\u30fc\u30eb\u306f\u96e3\u3057\u3044\">3. \u53b3\u5bc6\u306a\u30ed\u30b0\u30a4\u30f3\u30e6\u30fc\u30b6\u306e\u30b3\u30f3\u30c8\u30ed\u30fc\u30eb\u306f\u96e3\u3057\u3044<\/h4>\n\n\n\n<p>\u5358\u4e00\u306e EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u306b\u304a\u3044\u3066\u3001\u8907\u6570\u306e OS \u30e6\u30fc\u30b6\u306b\u5bfe\u3057\u53b3\u5bc6\u306b\u30b5\u30fc\u30d0\u30fc\u30ea\u30bd\u30fc\u30b9\u3092\u30b3\u30f3\u30c8\u30ed\u30fc\u30eb\u3057\u3066\u3044\u308b\u3088\u3046\u306a\u74b0\u5883\u4e0b\u306b\u304a\u3044\u3066\u306f\u3001AWS \u30de\u30cd\u30b8\u30e1\u30f3\u30c8\u30b3\u30f3\u30bd\u30fc\u30eb\u304b\u3089\u306e\u63a5\u7d9a\u306f\u7981\u6b62\u3059\u308b\u3079\u304d\u3067\u3059\uff08\u203b2\u306b\u7531\u6765\u3059\u308b\uff09\u3002<\/p>\n\n\n\n<p>SSH \u3067\u63a5\u7d9a\u3059\u308b\u5834\u5408\u306b\u306f\u3001\u79d8\u5bc6\u9375\u3067\u5236\u5fa1\u53ef\u80fd\u306a\u305f\u3081\u3053\u306e\u9650\u308a\u3067\u306f\u3042\u308a\u307e\u305b\u3093\u3002<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"4-os-\u30e6\u30fc\u30b6\u3067\u306f\u7121\u304f-iam-\u30e6\u30fc\u30b6\u7ba1\u7406\u3092\u610f\u8b58\u3059\u308b\">4. OS \u30e6\u30fc\u30b6\u3067\u306f\u7121\u304f IAM \u30e6\u30fc\u30b6\u7ba1\u7406\u3092\u610f\u8b58\u3059\u308b<\/h4>\n\n\n\n<p>Session Manager \u3092\u5229\u7528\u3057\u3066 EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078\u63a5\u7d9a\u53ef\u80fd\u304b\u3069\u3046\u304b\u306f\u3001IAM \u30e6\u30fc\u30b6\u306e\u6a29\u9650\u306b\u4f9d\u5b58\u3057\u307e\u3059\u3002\u305d\u306e\u305f\u3081\u3001\u5f93\u6765\u306e\u3088\u3046\u306a Linux OS \u4e0a\u3067\u306e\u30e6\u30fc\u30b6\u7ba1\u7406\u3067\u306a\u304f\u3001IAM Role\/IAM \u3000Policy \u3067\u306e\u63a5\u7d9a\u5236\u5fa1\uff0f\u7ba1\u7406\u3092\u610f\u8b58\u3057\u305f\u8a2d\u8a08\u304c\u5fc5\u8981\u3068\u306a\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u307e\u305f\u3001\u3069\u306e IAM \u30e6\u30fc\u30b6\u304c\u3044\u3064\u3069\u306e EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078\u30ed\u30b0\u30a4\u30f3\u3057\u305f\u306e\u304b\u306f AWS CloudTrail \u3078\u3059\u3079\u3066\u8a18\u9332\u3055\u308c\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u624b\u9806\"><span class=\"ez-toc-section\" id=\"%E3%82%BB%E3%83%83%E3%83%88%E3%82%A2%E3%83%83%E3%83%97%E6%89%8B%E9%A0%86\"><\/span>\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u624b\u9806<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u624b\u9806\"><span class=\"ez-toc-section\" id=\"0_%E5%89%8D%E6%8F%90\"><\/span>0. \u524d\u63d0<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>\u672c\u8a18\u4e8b\u3067\u306f EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u306b\u300cAmazon Linux 2\u300d\u3092\u5229\u7528\u3057\u3066\u304a\u308a\u3001\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u306b\u300cmacOS\u300d\u3092\u5229\u7528\u3057\u3066\u3044\u308b\u3053\u3068\u3092\u524d\u63d0\u3068\u3057\u305f\u624b\u9806\u3092\u8a18\u8f09\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u5c1a\u3001AWS \u516c\u5f0f\u30c9\u30ad\u30e5\u30e1\u30f3\u30c8\u4e0a\u306b\u306f\u3055\u307e\u3056\u307e\u306a OS \u5411\u3051\u306e\u624b\u9806\u304c\u8a18\u8f09\u3055\u308c\u3066\u3044\u308b\u306e\u3067\u3001\u4ee5\u964d\u306e\u624b\u9806\u5185\u3067\u968f\u6642\u6848\u5185\u3057\u307e\u3059\u304c\u3001\u4ed6\u74b0\u5883\u306e\u5834\u5408\u306b\u306f\u305d\u3061\u3089\u3092\u3054\u78ba\u8a8d\u304f\u3060\u3055\u3044\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"1-ec2-\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u4e0a\u3067\u306e\u624b\u9806\"><span class=\"ez-toc-section\" id=\"1_EC2_%E3%82%A4%E3%83%B3%E3%82%B9%E3%82%BF%E3%83%B3%E3%82%B9%E4%B8%8A%E3%81%A7%E3%81%AE%E6%89%8B%E9%A0%86\"><\/span>1. EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u4e0a\u3067\u306e\u624b\u9806<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>\u30d0\u30fc\u30b8\u30e7\u30f3 2.3.672.0 \u4ee5\u4e0a\u306e SSM a\u30a8\u30fc\u30b8\u30a7\u30f3\u30c8\u304c\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u3066\u3044\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u516c\u5f0f\u306e\u624b\u9806\u306f[\u3053\u3061\u3089](<a href=\"https:\/\/docs.aws.amazon.com\/ja_jp\/systems-manager\/latest\/userguide\/sysman-manual-agent-install.html\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">https:\/\/docs.aws.amazon.com\/ja_jp\/systems-manager\/latest\/userguide\/sysman-manual-agent-install.html<\/a>)\u3092\u53c2\u7167\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n\n\n\n<p>\u5c1a\u3001\u73fe\u6642\u70b9\u306eAmazon Linux 2\u306b\u306f\u30c7\u30d5\u30a9\u30eb\u30c8\u3067 SSM \u30a8\u30fc\u30b8\u30a7\u30f3\u30c8\u304c\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u3066\u3044\u308b\u306e\u3067\u4ee5\u4e0b\u624b\u9806\u306f\u5fc5\u8981\u3042\u308a\u307e\u305b\u3093\u3002<\/p>\n\n\n\n<p>1. \u30d0\u30fc\u30b8\u30e7\u30f3\u78ba\u8a8d<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ rpm -qi amazon-ssm-agent<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<p>2. \u30a2\u30c3\u30d7\u30c7\u30fc\u30c8<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ sudo yum install -y https:\/\/s3.amazonaws.com\/ec2-downloads-windows\/SSMAgent\/latest\/linux_amd64\/amazon-ssm-agent.rpm<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<p>3. SSM\u30a8\u30fc\u30b8\u30a7\u30f3\u30c8\u3092\u30ea\u30b9\u30bf\u30fc\u30c8<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ sudo systemctl restart amazon-ssm-agent<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"2-iam-\u306e\u8a2d\u5b9a\"><span class=\"ez-toc-section\" id=\"2_IAM_%E3%81%AE%E8%A8%AD%E5%AE%9A\"><\/span>2. IAM \u306e\u8a2d\u5b9a<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>IAM \u30e6\u30fc\u30b6\u3078\u4ee5\u4e0b\u306e\u30dd\u30ea\u30b7\u30fc\u3092\u30a2\u30b5\u30a4\u30f3\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u5c1a\u3001\u5bfe\u8c61\u306e IAM \u30e6\u30fc\u30b6\u3078 AdministratorAccess \u6a29\u9650\u304c\u4ed8\u4e0e\u3055\u308c\u3066\u3044\u308b\u5834\u5408\u306b\u306f\u5fc5\u8981\u3042\u308a\u307e\u305b\u3093\u3002<\/p>\n\n\n\n<p>&#8211; AmazonSSMFullAccess<\/p>\n\n\n\n<p>EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078\u4ee5\u4e0b\u306e\u30dd\u30ea\u30b7\u30fc\u304c\u542b\u307e\u308c\u308b IAM Role \u3092\u30a2\u30b5\u30a4\u30f3\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p>&#8211; AmazonSSMManagedInstanceCore<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"3-1-aws-\u30de\u30cd\u30b8\u30e1\u30f3\u30c8\u30b3\u30f3\u30bd\u30fc\u30eb\u304b\u3089\u63a5\u7d9a\u3059\u308b\u5834\u5408\"><span class=\"ez-toc-section\" id=\"3-1_AWS_%E3%83%9E%E3%83%8D%E3%82%B8%E3%83%A1%E3%83%B3%E3%83%88%E3%82%B3%E3%83%B3%E3%82%BD%E3%83%BC%E3%83%AB%E3%81%8B%E3%82%89%E6%8E%A5%E7%B6%9A%E3%81%99%E3%82%8B%E5%A0%B4%E5%90%88\"><\/span>3-1. AWS \u30de\u30cd\u30b8\u30e1\u30f3\u30c8\u30b3\u30f3\u30bd\u30fc\u30eb\u304b\u3089\u63a5\u7d9a\u3059\u308b\u5834\u5408<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>\u307e\u305a\u306f\u3001AWS \u30de\u30cd\u30fc\u30b8\u30e1\u30f3\u30c8\u30b3\u30f3\u30bd\u30fc\u30eb\u304b\u3089 Session Manager \u306b\u3066\u63a5\u7d9a\u53ef\u80fd\u3067\u3042\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p>1. EC2 \u306e\u7ba1\u7406\u30b3\u30f3\u30bd\u30fc\u30eb\u304b\u3089\u5bfe\u8c61\u306e\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3092\u9078\u629e\u3057\u3001\u53f3\u4e0a\u306e\u300c\u63a5\u7d9a\u300d\u30dc\u30bf\u30f3\u3092\u62bc\u4e0b\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"121\" src=\"https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-1-1024x121.png\" alt=\"\" class=\"wp-image-85\" srcset=\"https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-1-1024x121.png 1024w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-1-300x35.png 300w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-1-768x91.png 768w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-1-1536x181.png 1536w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-1.png 1569w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>2. \u9069\u5207\u306b IAM Role \u306e\u8a2d\u5b9a\u304c\u884c\u3048\u3066\u3044\u308b\u5834\u5408\u306b\u306f\u300c\u63a5\u7d9a\u300d\u30dc\u30bf\u30f3\u304c\u62bc\u305b\u308b\u3088\u3046\u306b\u306a\u3063\u3066\u3044\u308b\u306e\u3067\u62bc\u4e0b\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"461\" src=\"https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-2-1024x461.png\" alt=\"\" class=\"wp-image-86\" srcset=\"https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-2-1024x461.png 1024w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-2-300x135.png 300w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-2-768x346.png 768w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-2.png 1098w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>3. \u63a5\u7d9a\u306b\u6210\u529f\u3059\u308b\u3068 Web \u30d6\u30e9\u30a6\u30b6\u4e0a\u3078\u30ed\u30b0\u30a4\u30f3\u30b7\u30a7\u30eb\u304c\u8868\u793a\u3055\u308c\u307e\u3059\u3002<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"108\" src=\"https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-3-1024x108.png\" alt=\"\" class=\"wp-image-87\" srcset=\"https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-3-1024x108.png 1024w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-3-300x32.png 300w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-3-768x81.png 768w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-3-1536x161.png 1536w, https:\/\/baresupport.jp\/blog\/wp-content\/uploads\/2022\/03\/ssm_202201-snap-3.png 1580w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>\u30ed\u30b0\u30a2\u30a6\u30c8\u3059\u308b\u306b\u306f\u53f3\u4e0a\u306e\u300c\u7d42\u4e86\u300d\u30dc\u30bf\u30f3\u3092\u62bc\u4e0b\u3059\u308b\u304b\u3001\u30b7\u30a7\u30eb\u4e0a\u3067\u300cexit\u300d\u307e\u305f\u306f\u300cCtrl + D\u300d\u3092\u5165\u529b\u3059\u308b\u3053\u3068\u3067\u30ed\u30b0\u30a2\u30a6\u30c8\u53ef\u80fd\u3067\u3059\u3002<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"3-2-ssh-\u3067\u63a5\u7d9a\u3059\u308b\u5834\u5408\"><span class=\"ez-toc-section\" id=\"3-2_SSH_%E3%81%A7%E6%8E%A5%E7%B6%9A%E3%81%99%E3%82%8B%E5%A0%B4%E5%90%88\"><\/span>3-2. SSH \u3067\u63a5\u7d9a\u3059\u308b\u5834\u5408<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>v1.16.12 \u4ee5\u4e0a\u306e AWSCLI \u3068\u3001v1.1.23.0 \u4ee5\u4e0a\u306e Session Manager \u30d7\u30e9\u30b0\u30a4\u30f3\u304c\u5fc5\u8981\u3068\u306a\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u516c\u5f0f\u306e\u624b\u9806\u306f[\u3053\u3061\u3089](<a href=\"https:\/\/docs.aws.amazon.com\/ja_jp\/systems-manager\/latest\/userguide\/session-manager-working-with-install-plugin.html\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">https:\/\/docs.aws.amazon.com\/ja_jp\/systems-manager\/latest\/userguide\/session-manager-working-with-install-plugin.html<\/a>)\u3092\u53c2\u7167\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n\n\n\n<p>1. AWSCLI \u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ brew install awscli<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<p>2. \u30d7\u30e9\u30b0\u30a4\u30f3\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\uff06\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ curl \"https:\/\/s3.amazonaws.com\/session-manager-downloads\/plugin\/latest\/mac\/sessionmanager-bundle.zip\" -o \"sessionmanager-bundle.zip\"\n$ unzip sessionmanager-bundle.zip\n$ sudo .\/sessionmanager-bundle\/install -i \/usr\/local\/sessionmanagerplugin -b \/usr\/local\/bin\/session-manager-plugin<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<p>3. \u30d0\u30fc\u30b8\u30e7\u30f3\u78ba\u8a8d<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ session-manager-plugin --version\n1.2.279.0<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<p>4. ssh config \u306e\u4f5c\u6210<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ vim ~\/.ssh\/config\n\n# SSH over Session Manager\nhost i-* mi-*\nProxyCommand sh -c \"aws ssm start-session --target %h --document-name AWS-StartSSHSession --parameters 'portNumber=%p'\"<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<p>\u8907\u6570\u306e EC2 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3084\u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\u3092\u7ba1\u7406\u3057\u3066\u3044\u308b\u5834\u5408\u306f\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u8a18\u8f09\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ vim ~\/.ssh\/config\n\nHost &lt;uniq name&gt;\n\tHostName &lt;instance id&gt;\n\tUser ec2-user\n\tPort 22\n\tProxyCommand sh -c \"aws --profile &lt;profile name&gt; ssm start-session --target %h --document-name AWS-StartSSHSession --parameters 'portNumber=%p'\"\n\tIdentityFile &lt;pem file path&gt;\n\tTCPKeepAlive yes\n\tIdentitiesOnly yes<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<p>5. SSH\/SCP \u63a5\u7d9a<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ ssh -i &lt;\u79d8\u5bc6\u9375&gt; ec2-user@&lt;\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9ID&gt;\nor\n$ ssh &lt;uniq name&gt;\n\n$ scp -i &lt;\u79d8\u5bc6\u9375&gt; &lt;\u30ed\u30fc\u30ab\u30eb\u30d5\u30a1\u30a4\u30eb&gt; ec2-user@&lt;\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9ID&gt;:\uff1c\u8ee2\u9001\u5148\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea&gt;<\/code><\/pre>\n\n\n\n<p><\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"\u307e\u3068\u3081\"><span class=\"ez-toc-section\" id=\"%E3%81%BE%E3%81%A8%E3%82%81\"><\/span>\u307e\u3068\u3081<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u672c\u8a18\u4e8b\u3067\u306fAWS Systems Manager\u5185\u306e\u4e00\u6a5f\u80fd\u3067\u3042\u308bSession Manager\u3092\u4f7f\u7528\u3057\u3066\u3001EC2\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u3078\u30bb\u30ad\u30e5\u30a2\u306b\u63a5\u7d9a\u3059\u308b\u65b9\u6cd5\u3092\u89e3\u8aac\u3057\u307e\u3057\u305f\u3002Session Manager\u3092\u5229\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u30b0\u30ed\u30fc\u30d0\u30ebIP\u3092\u6301\u305f\u306a\u3044EC2\u306e\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u306b\u30a2\u30af\u30bb\u30b9\u3059\u308b\u305f\u3081\u306b\u3001\u5f93\u6765\u306e\u3088\u3046\u306b\u30e1\u30f3\u30c6\u30ca\u30f3\u30b9\u7528\u306e\u7d4c\u8def\u3084\u8e0f\u307f\u53f0\u30b5\u30fc\u30d0\u30fc\u3092\u7528\u610f\u3059\u308b\u5fc5\u8981\u304c\u306a\u304f\u306a\u308b\u307b\u304b\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u5411\u4e0a\u3082\u671f\u5f85\u3067\u304d\u307e\u3059\u3002Session Manager\u3092\u5229\u7528\u3059\u308b\u4e0a\u3067\u306f\u3001IAM\u30e6\u30fc\u30b6\u306e\u30dd\u30ea\u30b7\u30fc\u3092\u610f\u8b58\u3057\u305f\u8a2d\u8a08\u304c\u5fc5\u8981\u3068\u306a\u308b\u305f\u3081\u3001IAM\u30e6\u30fc\u30b6\u306e\u6a29\u9650\u3092\u9069\u5207\u306b\u7ba1\u7406\u3059\u308b\u3088\u3046\u306b\u5fc3\u304c\u3051\u307e\u3057\u3087\u3046\u3002<\/p>\n\n\n\n<p>AWS\u4e0a\u3067\u7a3c\u50cd\u3059\u308b\u30b7\u30b9\u30c6\u30e0\u3092\u30bb\u30ad\u30e5\u30a2\u306b\u904b\u7528\u3059\u308b\u305f\u3081\u306b\u306f\u3001\u305d\u308c\u3092\u610f\u8b58\u3057\u305f\u30a4\u30f3\u30d5\u30e9\u8a2d\u8a08\u30fb\u69cb\u7bc9\u304c\u5fc5\u8981\u3068\u306a\u308a\u307e\u3059\u3002\u3082\u3057AWS\u306e\u8a2d\u8a08\u30fb\u69cb\u7bc9\u30fb\u904b\u7528\u306b\u8ab2\u984c\u3092\u304a\u6301\u3061\u3067\u3042\u308c\u3070\u3001\u300c\u30d9\u30a2\u30b5\u30dd\u30fc\u30c8\u300d\u307e\u3067\u304a\u6c17\u8efd\u306b\u3054\u76f8\u8ac7\u304f\u3060\u3055\u3044\u3002<\/p>\n\n\n\n<p><a href=\"https:\/\/baresupport.jp\/case\/\" title=\"\u30d9\u30a2\u30b5\u30dd\u30fc\u30c8\u5c0e\u5165\u4e8b\u4f8b\u306f\u3053\u3061\u3089\">\u30d9\u30a2\u30b5\u30dd\u30fc\u30c8\u5c0e\u5165\u4e8b\u4f8b\u306f\u3053\u3061\u3089<\/a><\/p>\n\n\n\n<figure class=\"wp-block-image\"><a href=\"https:\/\/baresupport.jp\/about\/\"><img decoding=\"async\" src=\"https:\/\/baremetal.jp\/blog\/wp-content\/uploads\/2020\/12\/\u00e3\u0083\u0095\u00e3\u0082\u0099\u00e3\u0083\u00ad\u00e3\u0082\u00af\u00e3\u0082\u0099\u00e7\u0094\u00a8\u00e3\u0083\u008f\u00e3\u0082\u0099\u00e3\u0083\u008a\u00e3\u0083\u00bc\u00e3\u0081\u00ae\u00e3\u0082\u00b3\u00e3\u0083\u0092\u00e3\u0082\u009a\u00e3\u0083\u00bc7-01.png\" alt=\"\u76e3\u8996\u904b\u7528\u306a\u3089\u30d9\u30a2\u30b5\u30dd\u30fc\u30c8\"\/><\/a><\/figure>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>AWS Systems Manager (\u65e7SSM) \u3068\u306f\u3001AWS \u5185\u30ea\u30bd\u30fc\u30b9\u306e\u69cb\u6210\uff0f\u5909\u66f4\u7ba1\u7406\u3084\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u30d1\u30e9\u30e1\u30fc\u30bf\u306e\u96c6\u4e2d\u7ba1\u7406\u306a\u3069\u3001\u3055\u307e\u3056\u307e\u306a\u7ba1\u7406\u7cfb\u6a5f\u80fd\u304c\u96c6\u5408\u3057\u305f\u30b5\u30fc\u30d3\u30b9\u3067\u3059\u3002\u3053\u306e AWS Systems Mana [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":131,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[18],"tags":[17],"class_list":["post-82","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tech-blog","tag-aws"],"aioseo_notices":[],"views":88087,"_links":{"self":[{"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/posts\/82","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/comments?post=82"}],"version-history":[{"count":10,"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/posts\/82\/revisions"}],"predecessor-version":[{"id":528,"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/posts\/82\/revisions\/528"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/media\/131"}],"wp:attachment":[{"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/media?parent=82"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/categories?post=82"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/baresupport.jp\/blog\/wp-json\/wp\/v2\/tags?post=82"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}