AWS Systems Manager
User Guide

Systems Manager Prerequisites

The prerequisites for using AWS Systems Manager to manage your Amazon EC2 instances, on-premises servers, and virtual machines (VMs) are covered step by step in the Setting Up chapters of this user guide:

This topic provides an overview of these prerequisites.

To complete prerequisites for using Systems Manager

  1. Create an AWS account and configure the required IAM roles.

  2. Verify that Systems Manager is supported in the AWS Regions where you want to use the service.

  3. Verify that you are using supported machine types that run a supported operating system.

  4. For EC2 instances, create an IAM instance profile and attach it to your machines.

  5. For on-premises servers and VMs, create an IAM service role for a hybrid environment.

  6. Verify that you are allowing HTTPS (port 443) outbound traffic to the Systems Manager endpoints.

  7. (Recommended) Create a VPC endpoint in Amazon Virtual Private Cloud to use with Systems Manager.

  8. On on-premises servers, VMs, and EC2 instances created from AMIs that are not supplied by AWS, install a Transport Layer Security (TLS) certificate.

  9. For on-premises servers and VMs, register the machines with Systems Manager through the managed instance activation process.

  10. Install or verify installation of SSM Agent on each of your managed instances.

Integration with IAM and Amazon EC2

User access to Systems Manager, its capabilities, and its resources are controlled through policies that you use or create in AWS Identity and Access Management (IAM). If you plan to use computing resources provided by AWS, and not only on-premises servers and virtual machines (VMs), you also need to understand Amazon Elastic Compute Cloud (Amazon EC2) before you set up Systems Manager for your organization. Understanding how these services work is essential to successfully set up Systems Manager.

For more information about Amazon EC2, see the following:

For more information about IAM, see the following: