AWS Systems Manager
AWS Systems Manager is a management service that helps you automatically collect software inventory, apply OS patches, create system images, and configure Windows and Linux operating systems. These capabilities help you define and track system configurations, prevent drift, and maintain software compliance of your EC2 and on-premises configurations. By providing a management approach that is designed for the scale and agility of the cloud but extends into your on-premises data center, Systems Manager makes it easier for you to seamlessly bridge your existing infrastructure with AWS.
Systems Manager is easy to use. Simply access Systems Manager from the EC2 Management Console, select the instances you want to manage, and define the management tasks you want to perform. Systems Manager is available now at no cost to manage both your EC2 and on-premises resources.
Manage Hybrid Cloud Systems
With Systems Manager you can manage systems running on AWS and in your on-premises data center through a single interface. Systems Manager uses a light-weight agent installed on your EC2 instances and on-premises servers that communicates securely with the Systems Manager service and executes management tasks. This helps you manage resources for Windows and Linux operating systems running on Amazon EC2 and in data center infrastructure such as VMware ESXi, Microsoft Hyper-V, and other platforms.
Easy to Use Automation
AWS Systems Manager lets you easily automate complex and repetitive tasks such as applying OS patches across a large group of instances, making regular updates to AMIs, and enforcing configuration policies. Systems Manager has a simple interface to define your management tasks and then select a specific set of resources to manage. Tasks can be configured to run automatically based either on the results of software inventory collection or events registered by Amazon CloudWatch events.
Improve Visibility and Control
Systems Manager helps you easily understand and control the current state of your EC2 instance and OS configurations. With Systems Manager, you can collect software configuration and inventory information about your fleet of instances and the software installed on them. You can track detailed system configuration, OS patch levels, application configurations, and other details about your deployment. Integration with AWS Config lets you easily view changes as they occur over time.
Maintain Security and Compliance
Systems Manager helps keep your systems compliant with your defined configuration policies. You can define patch baselines, maintain up-to-date anti-virus definitions, and enforce firewall policies. With Systems Manager, you can maintain software compliance and improve your security posture.
Systems Manager helps you reduce costs by providing easy to use, automated tools for tracking, updating and maintaining your software and OS configurations. With Systems Manager, you can automatically maintain systems that are compliant so you don’t waste time on manual updates, or add risk associated with non-compliant systems.
Secure Role-Based Management
Systems Manager helps improve your security posture in several ways. Through integration with AWS Identity and Access Management (IAM), you can apply granular permissions to control the actions users perform. All actions taken by Systems Manager are recorded by AWS CloudTrail, allowing you to audit changes throughout your environment.