AWS Systems Manager
User Guide

Setting Up Run Command

This section includes recommended tasks for restricting command access to tagged instances and monitoring command execution. The tasks in this section are not required, but they can help minimize the security posture and day-to-day management of your instances. For this reason, we highly recommend you complete the tasks in this section.