The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.
Apache License 2.0
725
stars
233
forks
source link
[BUG][DOCS] SSM QS Patching - Custom IAM Profile? #1228
Describe the bug
In the SSM Quick Setup Patching Patching guide, the post-deployment checks instruct you to create an EC2 instance and Ensure that the EC2-Default-SSM-AD-Role is selected as the IAM Profile.
Does this mean that SSM QS Patching in ASEA will only work with the EC2-Default-SSM-AD-Role?
What if customers want to use a custom IAM profile on their EC2 instances? Will they have to add the required policies and tags manually to this role?
Bug reports which fail to provide the required information will be closed without action.
Required Basic Info
Describe the bug In the SSM Quick Setup Patching Patching guide, the post-deployment checks instruct you to create an EC2 instance and
Ensure that the EC2-Default-SSM-AD-Role is selected as the IAM Profile. Does this mean that SSM QS Patching in ASEA will only work with the EC2-Default-SSM-AD-Role? What if customers want to use a custom IAM profile on their EC2 instances? Will they have to add the required policies and tags manually to this role?