Run ssm-agent on OS as non privilege user

aws / amazon-ssm-agent

An agent to enable remote management of your EC2 instances, on-premises servers, or virtual machines (VMs).

https://aws.amazon.com/systems-manager/

Apache License 2.0

1.04k stars 322 forks source link

Run ssm-agent on OS as non privilege user #322

Open wing2ofsky opened 3 years ago

wing2ofsky commented 3 years ago

Hi,

May i know if it's possible to run ssm-agent on linux as non privilege user? Currently it's root by default which does not meet company security standard. or even it could not be accomplished directly, could you please give me some advice on how to do that through customization? thanks

VishnuKarthikRavindran commented 3 years ago

Thanks for contacting us. We currently do not have any workaround for this. We have this feature planned in our near term road map

jackdcasey commented 3 years ago

In my org, we're looking to get around this using the RunAs feature, that might work for you?

https://docs.aws.amazon.com/systems-manager/latest/userguide/session-preferences-run-as.html