This document summarizes Vijaya Nirmala's background and experience with AWS cloud services. She is passionate about AWS cloud and security compliance and has been a contributor to AWS user group sessions and conferences since 2018. The document provides links to sessions she has spoken at and describes her contributions to the AWS community through blogging and open source roles. It also gives her LinkedIn and Twitter profiles. The remainder of the document describes the AWS Systems Manager service and provides steps for using Run Command to run Ansible playbooks on cloud and on-premise instances.
2. Vijaya Nirmala is an ardent learner, passionate about AWS Cloud and Security &
Compliance Passionate; Active & Proud member in AWS Community Builders Program;
Contributor to AWS user group sessions since 2018 and a prolific Conference speaker for
AWS community days since 2018
2020 Events:
❏ https://www.indiacloudsummit.com/#speakers
❏ Speaking at Women in Data Science on “Data Lake for Data science in AWS” on
September 5th, 2020 [Flyers are yet to be released]
Earlier Events (since 2018) :
❏ https://communityday.awsugkochi.in/
❏ https://communityday.awsugblr.in/
❏ https://communityday.awsugchn.in/#speakers
Contributions to the AWS Community:
❏ Journal my cloud experiences in https://cloudgoddess.blogspot.com
❏ Writer in medium.com at page https://medium.com/@gvnirmalaa
❏ As a token of appreciation of her continuous contributions to AWS, was awarded full scholarship grants to
attend AWS re:invent 2019 in December 2019
❏ Open source contributor in Ansible galaxy https://galaxy.ansible.com/gvnirmalaa/ansible_role_snowsql
LinkedIn: https://www.linkedin.com/in/vijayanirmalagopal-5a54159a/
Twitter: https://twitter.com/VijayaNirmalaG2
About Me !!
7. AWS SSM - RunAnsiblePlaybook Phases
Create Ansible
Playbook/Role
Package the
Code in S3
Configure/Setup
Target Instances
Apply from SSM
8. AWS SSM - in RunAnsiblePlaybook - Steps involved
Identify the Instances and prep
with required permissions
Package the play into S3
SSM - RunAnsiblePlaybook -
point to s3 URL
Verify logs from S3 bucket
Apply SSM Runcommand
Pick the play from Git/Ansible
Galaxy
14. RunAnsiblePlaybook - Step 6
Check status of the SSM Agent
1) SSM Agent is the key
2) Available in Amazon AMIs
3) Other flavours of OS needs installation
4) For fresh instances deploy via user data
16. RunAnsiblePlaybook - Step 8
Package the code into S3
1) Code packaging will be one time activity if role from galaxy is used
2) If code is used from Repo, then add steps to move code from Repo to S3
3) Code is safe and encrypted, if packaged in S3
29. AWS SSM - Key gains for patch/deploy
Unbeatable gains on using AWS SSM for patch or deploy tasks
1. 1) SSH keys management & monitoring is eliminated
2. 2) Centralized logs for all instance deployments
3. 3) Cloudtrail captures the API calls against each resource
4. 4) Log verification in N instances makes tracking easier
5. 5) Well secured Authentication and Authorization(IAM Roles,
Policies)