2 Antworten
- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
1
I advise to use Systems Manager's Sessions Manager instead of a bastion host, if possible. Read more about it here: Replacing a Bastion Host with Amazon EC2 Systems Manager.
1
Use Systems Manager Sessions Manager. Then use AAD and AWS IAM Identity Centre Permission sets (thats how I assume you are using SSO) to grant the right set of users the right set of permissions to use Sessions Manager. This will have a markedly better security posture.
https://docs.aws.amazon.com/systems-manager/latest/userguide/session-manager.html
beantwortet vor einem Jahr
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor 3 Jahren
- AWS OFFICIALAktualisiert vor 2 Jahren
- AWS OFFICIALAktualisiert vor 10 Monaten