Ends in
00
days
00
hrs
00
mins
00
secs
ENROLL NOW

🎁 Get 20% Off - Christmas Big Sale on All Practice Exams, Video Courses, and eBooks!

Default Host Management Configuration on AWS Systems Manager

Home » AWS » Default Host Management Configuration on AWS Systems Manager

Default Host Management Configuration on AWS Systems Manager

Last updated on April 10, 2023

AWS Systems Manager’s Fleet Manager is a useful tool for managing Amazon EC2 instances on your account. It allows you to establish a private session to your instances, view detailed information about the instance, run automation such as patch installations, or execute specific Run commands to the instance’s operating system. It can also be used to manage on-premises servers or virtual machines.

Using AWS Systems Manager tools requires that an IAM role is created and attached as an instance profile to your EC2 instances. It also requires that the Systems Manager Agent is installed on the instances.

The Systems Manager agent comes pre-installed on popular AMIs such as Amazon Linux, Ubuntu, SUSE Linux Enterprise, Ubuntu, and Windows Server. The installation of SSM Agent on other operating systems is fairly easy and straightforward. However, attaching an appropriate IAM instance profile on each of the instances in your account must be done manually and if not done properly, can risk your instances being inaccessible, becoming less secure, or may fall out of your defined security compliances. To solve this problem, AWS introduced the Default Host Management Configuration setting in AWS Systems Manager.

What is Default Host Management Configuration?

When enabled, the Default Host Management Configuration on AWS Systems Manager allows the automatic enrollment and management of Amazon EC2 instances to the Systems Manager even without attaching an instance profile to them. The only requirement is to have the AWS Systems Manager Agent (SSM Agent) version 3.2.532.0 or later installed on the instance.

It is recommended to enable the Default Host Management Configuration setting to ensure all instances on your AWS account are managed by AWS Systems Manager Fleet Manager.

 Follow the proceeding steps to enable this setting on your account.

  1. Navigate to the Systems Manager console > Fleet Manager.
  2. Under Account Management, click Default Host Management Configuration.
    Default Host Management Configuration on AWS Systems Manager
  3. Click Enable Default Host Management Configuration, and select the IAM role to be used.
    Default Host Management Configuration on AWS Systems Manager
  4. It is recommended to allow AWS to create the role with the default permissions. However, if you created your own IAM role, you can select it on the drop-down options, or if you need to customize the policies on the IAM role, you can do it later after the IAM role creation.
    Default Host Management Configuration on AWS Systems Manager
  5. Click Configure to apply the changes.
  6. Tutorials dojo strip

Once enabled, all Amazon EC2 instances become managed instances, and you should be able to see the instances in the Systems Manager Fleet Manager section.
Default Host Management Configuration on AWS Systems Manager

The benefits of managed instances include the following:

  • Securely connect to your instances using Session Manager.
  • Perform automated daily patch scans using Patch Manager.
  • Get a complete view of your instances using Inventory.
  • Track your instances using Fleet Manager.
  • Automatically update the SSM Agent.

Additionally, any new Amazon EC2 instances created on your account will be automatically managed on Fleet Manager as long as the SSM Agent is installed on the instance.

Resources:

https://aws.amazon.com/blogs/mt/enable-management-of-your-amazon-ec2-instances-in-aws-systems-manager-using-default-host-management-configuration/

https://docs.aws.amazon.com/systems-manager/latest/userguide/managed-instances-default-host-management.html

https://docs.aws.amazon.com/systems-manager/latest/userguide/quick-setup-host-management.html

Get 20% Off – Christmas Big Sale on All Practice Exams, Video Courses, and eBooks!

Tutorials Dojo portal

Learn AWS with our PlayCloud Hands-On Labs

Tutorials Dojo Exam Study Guide eBooks

tutorials dojo study guide eBook

FREE AWS Exam Readiness Digital Courses

FREE AWS, Azure, GCP Practice Test Samplers

Subscribe to our YouTube Channel

Tutorials Dojo YouTube Channel

Follow Us On Linkedin

Recent Posts

Written by: Kenneth Samonte

Kenneth is an AWS Architect & Linux System Administrator. He's a Red Hat Certified System Administrator, AWS Certified Solutions Architect Professional, and a VMware Certified Professional. He's also a registered Electronics Engineer and Cisco Certified Network Associate (CCNA). He enjoys exploring cloud platforms and administering Linux systems. When he's not busy, you’ll find him online playing League of Legends.

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, YouTube, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!

View Our AWS, Azure, and GCP Exam Reviewers Check out our FREE courses

Our Community

~98%
passing rate
Around 95-98% of our students pass the AWS Certification exams after training with our courses.
200k+
students
Over 200k enrollees choose Tutorials Dojo in preparing for their AWS Certification exams.
~4.8
ratings
Our courses are highly rated by our enrollees from all over the world.

What our students say about us?