Menu
Sign In to the Console
Amazon Elastic Compute Cloud
User Guide for Linux Instances

SSM Run Command Prerequisites

SSM Run Command has the following limitations and prerequisites. For information about Windows prerequisites, see SSM Run Command Prerequisites in the Amazon EC2 User Guide for Microsoft Windows Instances.

Limitations

Run Command is only available in the SSM regions.

Prerequisites

RequirementDetailsFor More Information

Supported Operating System

Instances must be running a supported version of Linux.

64-Bit and 32-Bit Systems

  • Amazon Linux 2014.09, 2014.03 or later

  • Ubuntu Server 14.04 LTS, 12.04 LTS or later

  • Red Hat Enterprise Linux (RHEL) 6.5 or later

  • CentOS 6.3 or later

64-Bit Systems Only

  • Amazon Linux 2015.09, 2015.03 or later

  • Red Hat Enterprise Linux (RHEL) 7.x or later

  • CentOS 7.1 or later

Finding a Linux AMI

Agent

Instances must be running the latest version of the SSM agent.

Note

The source code for the SSM agent is available on GitHub so that you can adapt the agent to meet your needs. We encourage you to submit pull requests for changes that you would like to have included. However, Amazon Web Services does not currently provide support for running modified copies of this software.

Configuring the SSM Agent

IAM Roles and Permissions

Run Command requires an IAM EC2 instance role for instances that will process commands and a separate role for users executing commands. Both roles require permission policies that enable them to communicate with the SSM API.

For instances and users, you can use SSM managed policies or you can create your own IAM policies. If you want to use an existing IAM role for EC2 instances, you must verify that ec2.amazonaws.com is listed in the trust policy for the role.

Configuring IAM Roles and Users for SSM Run Command

Internet Access

Verify that your EC2 instances have outbound Internet access. Inbound Internet access is not required.

Internet Gateways

Amazon S3 Bucket (Optional)

You can store command output in an Amazon S3 bucket. Command output in the Amazon EC2 console is truncated after 2500 characters. Additionally, you might want to create an Amazon S3 key prefix (a subfolder) to help you organize Run Command output.

Create a Bucket


After you configure prerequisites, see Executing a Command with SSM Run Command for step-by-step procedures. To view Run Command examples, see SSM Run Command Walkthroughs.

Related Topics