If you want to improve efficiency or increase monitoring capabilities, setting up the SSM Agent is the initial move. In this article, we will explain how to prepare your EC2 instances for optimal usage of AWS Systems Manager.

How to Install SSM Agent on EC2 Instance?

large_About Our Team Business Presentation in Black Cream Beige Warm & Modern Style (35).png

medium_About Our Team Business Presentation in Black Cream Beige Warm & Modern Style (35).png

small_About Our Team Business Presentation in Black Cream Beige Warm & Modern Style (35).png

thumbnail_About Our Team Business Presentation in Black Cream Beige Warm & Modern Style (35).png

Managing Amazon EC2 instances has become smarter thanks to the Amazon Systems Manager (SSM) Agent. This effective tool connects AWS Systems Manager with your instance's operating system, enabling remote command execution, task automation, and smooth inventory management.<h2>What does the SSM Agent do?</h2>The SSM Agent is a program that operates on an EC2 instance, facilitating interaction between the AWS Systems Manager and the instance. It provides various functions, such as:Execute shell commands from a distance with the Run Command feature.<ul><li>Manager of Sessions:&nbsp;Protecting terminal sessions without using RDP or SSH.</li><li>Patch Manager: Simplify the operating system and application patching processes.</li><li>Stock:&nbsp;Compile instance data for compliance and management needs.</li></ul>If the SSM agent is not pre-installed, then you may have to manually install it for different operating systems or custom AMIs.<h2>What Are the SSM Agent Installation Requirements?</h2>It is important to assess certain key prerequisites before installing the SSM agent on an EC2 instance:<h3>IAM Role having Required Permissions:</h3>The EC2 instance needs an IAM role that provides the necessary permissions for the AWS Systems Manager. This usually involves adding the code “AmazonSSMManagedInstanceCore” policy, enabling the instance to interact with the Systems Manager and utilize its associated functionalities.<h3>Connectivity within a network:</h3>For the SSM Agent to work correctly, your EC2 instance needs to be able to connect to the internet or a Systems Manager VPC endpoint. Public instances can connect to the internet without any restrictions, whereas private instances require a VPC endpoint to communicate with the AWS Systems Manager.&nbsp;<h3>Installation of Package Manager completed:</h3>Make sure the necessary package manager is accessible for installation based on the operating system of your EC2 instance (Linux, Windows, etc.). For Amazon Linux, use yum, and for Ubuntu, use apt-get on Linux instances. On Windows, make sure the instance can execute the SSM installer.<h2>How to Install the SSM Agent on EC2 Instance?</h2>Setting up the Amazon SSM Agent on an EC2 instance is a simple procedure, although it may differ slightly based on the instance's operating system. Here is the method for installing it on various platforms:<h3>1. Check if the SSM Agent has been installed:</h3>Before installing the SSM Agent, check if it is currently installed and active.<ul><li>Linux (Amazon Linux, Ubuntu):</li></ul>Code:<pre><code class="language-plaintext">systemctl status amazon-ssm-agent</code></pre>If the status is active, it indicates that the agent has been installed and is now operational.-Windows operating system:<ul><li>Access Services or enter <code>services.msc</code> in the Run box.</li><li>Search for AmazonSSMAgent.</li></ul>If the agent is not present, proceed with the installation steps provided.<h3>2. Install the SSM Agent on Amazon Linux or Amazon Linux 2:</h3>Update system packages:Code:<pre><code class="language-plaintext">sudo yum update -y</code></pre>Install the SSM Agent:Code:<pre><code class="language-plaintext">sudo yum install -y amazon-ssm-agent</code></pre>Enable and start the agent:Code:<pre><code class="language-plaintext">sudo systemctl enable amazon-ssm-agent
sudo systemctl start amazon-ssm-agent</code></pre><h3>3. Install the SSM Agent on Ubuntu:</h3>Update system packages:Code:<pre><code class="language-plaintext">sudo apt-get update</code></pre>Install the SSM Agent:Code:<pre><code class="language-plaintext">sudo snap install amazon-ssm-agent --classic</code></pre>Enable and start the agent:Code:<pre><code class="language-plaintext">sudo systemctl enable amazon-ssm-agent
sudo systemctl start amazon-ssm-agent</code></pre><h3>4. Install the SSM Agent on Windows:</h3><ul><li>Download the SSM Agent Installer:</li></ul>Visit the<a href="https://docs.aws.amazon.com/systems-manager/latest/userguide/session-manager-working-with-install-plugin.html">&nbsp;official SSM Agent download page</a>.Choose the suitable version for your Windows operating system.<ul><li>Run the Installer:</li></ul>Start the installer, then adhere to the installation guidelines.<ul><li>Start the Agent:</li></ul>Open&nbsp;Services, locate&nbsp;AmazonSSMAgent and click&nbsp;Start if it’s not already running.<h3>5. Verify the SSM Agent Installation:</h3>After installation, confirm that the agent is operating:Linux:Code<pre><code class="language-plaintext">systemctl status amazon-ssm-agent</code></pre>Windows:Use the following PowerShell command:CodeGet-Service -Name AmazonSSMAgent<h3>6. Test the SSM Agent Installation:</h3><ol><li>Sign in to the AWS Management Console.</li><li>Go to Systems Manager and then click on Managed Instances.</li></ol>If the case does not materialize:<ul><li>Check the IAM's role and corresponding policy.</li><li>Validate the connection to the Systems Manager endpoint.</li></ul><h3>7. Automate SSM Agent Installation:</h3>You can automate the SSM Agent installation using a user data script when launching an EC2 instance.Code:<pre><code class="language-plaintext">#!/bin/bash
sudo yum update -y
sudo yum install -y amazon-ssm-agent
sudo systemctl enable amazon-ssm-agent
sudo systemctl start amazon-ssm-agent</code></pre>Add this script to the User Data section during instance creation.<h2>Troubleshooting some of the Key SSM Agent Issues on EC2 Instances:</h2>When utilizing the SSM Agent on EC2 instances, you might come across certain typical problems. Listed below are some issues along with their corresponding troubleshooting resolutions:<ol><li>SSM Agent Failing to Begin:</li></ol>Failure to start the SSM Agent is commonly caused by installation problems, absence of dependencies, or issues with system configuration. For problem-solving:<ul><li>Inspect the agent’s logs for any error notifications.</li><li>Install the agent again or update it to make sure it is the most recent version available.</li><li>Make sure the instance has adequate resources, such as memory, to support the agent's operation.</li></ul><ol start="2"><li>Instance Not Showing in Managed Instances:</li></ol>If your EC2 instance is not visible in the AWS Systems Manager interface, it may be due to:<ul><li>IAM Role Issues: Assure that the EC2 instance's IAM role contains the AmazonSSMManagedInstanceCore policy to avoid IAM role issues.</li><li>Connectivity of the Network: Make sure the instance can connect to the Systems Manager through either the internet or a VPC endpoint.</li></ul><ol start="3"><li>Errors related to authorization:</li></ol>If you encounter authorization problems, it probably indicates that the IAM role linked to the instance lacks the required permissions to interact with the Systems Manager.<ul><li>Verify the role's policy to make sure the correct permissions are given.</li></ul>Resolving these typical issues ensures that the SSM Agent operates effectively and manages your EC2 instances effectively.<h2>Bottom Line</h2>It is important to install the SSM Agent on EC2 instances to fully utilize AWS Systems Manager's capabilities. You can set up and configure the SSM Agent on different operating systems by adhering to the steps mentioned earlier.Make sure your instances have the right IAM role and network configuration to fully utilize the advantages of a Systems Manager. Having the SSM Agent installed enables efficient automation of tasks, improved security, and simplified management of EC2 instances.Read More<a href="https://devopsden.io/article/how-to-install-docker-on-an-ec2-instance">https://devopsden.io/article/how-to-install-docker-on-an-ec2-instance</a>Follow us on<a href="https://www.linkedin.com/company/devopsden/">https://www.linkedin.com/company/devopsden/</a>

As an Application Engineer at Xoogle Global Technologies Pvt. Ltd., I contributed to the development, testing, and deployment of web applications for various clients. I used my skills in Salesforce B2B Commerce, Web Development, and Ethical Hacking to create secure, scalable, and user-friendly solutions that met the business requirements and expectations of the customers.
                    I have a Diploma in Computer Science from Hanswahini Institute of Science and Technology, where I learned the fundamentals of programming, web design, and web applications. I also completed multiple certifications and courses in HTML, CSS, and AJAX to enhance my knowledge and proficiency in web development. I am passionate about exploring new technologies and trends in the field of internet of things (IOT), and I share my insights and experiences on my blog, Subopali. My goal is to leverage my skills and expertise to create innovative and impactful web applications that solve real-world problems and improve people's lives.

WedNov222023DSC_0244 (1) (1).jpg

I am full-stack developer and experienced Software Engineer with a demonstrated history of working in the information technology and services industry

How to Install SSM Agent on EC2 Instance?

Recent Blogs

How To Install Docker On AWS EC2?

Can't Access NGINX from Outside of EC2: Troubleshooting and Solutions

How to Add a Security Group to an EC2 Instance?

Information

Contact Us

How to Install SSM Agent on EC2 Instance?

Recent Blogs

How To Install Docker On AWS EC2?

Can't Access NGINX from Outside of EC2: Troubleshooting and Solutions

How to Add a Security Group to an EC2 Instance?

Subscribe to Us

Information

Contact Us