aws.ssm-managed-instance
Filters
Actions
send-command
Run an SSM Automation Document on an instance.
- Example:
Find ubuntu 18.04 instances are active with ssm.
policies:
- name: ec2-osquery-install
resource: ec2
filters:
- type: ssm
key: PingStatus
value: Online
- type: ssm
key: PlatformName
value: Ubuntu
- type: ssm
key: PlatformVersion
value: 18.04
actions:
- type: send-command
command:
DocumentName: AWS-RunShellScript
Parameters:
commands:
- wget https://pkg.osquery.io/deb/osquery_3.3.0_1.linux.amd64.deb
- dpkg -i osquery_3.3.0_1.linux.amd64.deb
properties:
command:
type: object
type:
enum:
- send-command
required:
- command
Permissions - ssm:SendCommand