To access SSM parameters across multiple AWS accounts, you can use either of the following methods:
To share SSM parameters using RAM, follow these steps:
i. Log in to the AWS Management Console and open the RAM console.
ii. Create a resource share for your SSM parameters.
iii. Invite the AWS account with which you want to share the SSM parameters.
iv. Once the invite is accepted, the AWS account can access your SSM parameters.
To use cross-account IAM roles, follow these steps:
i. Create an IAM role in the account that needs access to the SSM parameters.
ii. Attach a policy to the role that grants access to the required SSM parameters.
iii. Create a trust policy for your IAM role that allows the account with the SSM parameters to assume the role.
iv. Once the trust policy and permissions are in place, the IAM role can be used to access the SSM parameters in the other account.
Note: Make sure to apply the principle of least privilege when granting access to SSM parameters. Only grant access to the minimum number of AWS accounts and IAM roles that require access.
Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss
Asked: 2021-12-23 11:00:00 +0000
Seen: 19 times
Last updated: Mar 09 '23
How can one ensure that sub-classes have uniform method parameters in TypeScript?
How can the calculation of matrix determinant be performed using CUDA?
How can code repetition be prevented when using (box)plot functions?
What steps can I take to prevent my webpage from slowing down when all parts of a div are displayed?
How can circles be detected in openCV?
What is the method to determine the most precise categorization of data using Self Organizing Map?