Unable to connect EC2 instance via Session Manager

Question

I am at the point of recertification of my cloud architect certificate via https://cloudquest.skillbuilder.aws/callback.  Connecting-vpc/MarketingServer via SessionManager has not been possible.  Each time I clicked connect on SessionManager window, an error message (Network Failure) will popup.  I ha[[[]()]()]()ve been on this spot for the last three days.  All efforts to restart/refresh have not yielded any positive result.
![Network Failure](/media/postImages/original/IMJ6IicFxCQaaR88Ib9CSwwg)

re:Post Agent · Answer

To resolve your issue with connecting to an EC2 instance via Session Manager, I'll provide several troubleshooting steps:

1. IAM Role Permissions:
- Verify that the EC2 instance has an IAM role attached with the necessary permissions
- The role should include the AmazonSSMManagedInstanceCore managed policy or equivalent permissions
- This policy grants the required permissions for Systems Manager functionality

2. Instance Configuration:
- Ensure the SSM agent is installed and running on your EC2 instance
- Check the SSM agent logs at /var/log/amazon/ssm/amazon-ssm-agent.log for any errors

3. Network Configuration:
- Check the security group associated with your EC2 instance
- Ensure it allows inbound and outbound traffic on port 443 (HTTPS) for Session Manager connections
- Verify that the subnet where your EC2 instance resides has proper routing to communicate with Systems Manager endpoints
- If the instance is in a private subnet, it might require a NAT gateway for outbound internet access

4. VPC Endpoints:
- If you're using VPC endpoints, ensure they're configured correctly to allow traffic to and from Systems Manager endpoints

5. Instance Status:
- Confirm your EC2 instance is in the "running" state and reachable over the network

6. Session Manager Configuration:
- Verify that Session Manager is enabled in your AWS account and configured correctly
- Check the Session Manager settings in the AWS Systems Manager console

7. Network ACLs:
- If you're using network ACLs, ensure they allow the necessary traffic for Session Manager

If these steps don't resolve the issue, you might want to try rebooting the instance or using an alternative connection method temporarily while troubleshooting the Session Manager connection.  
**Sources**  
[Unable to Connect to EC2 Instance via SSM Session Manager | AWS re:Post](https://repost.aws/questions/QUmw-Dgnm0RuaCyCLsOVuo5Q/unable-to-connect-to-ec2-instance-via-ssm-session-manager)  
[Can't connect to Linux instance even after the health status checks pass | AWS re:Post](https://repost.aws/knowledge-center/connect-linux-health-check-pass)

Gary Mclean · Answer

Also check your local firewall on your Machine incase its blocking traffic to AWS SSM public Endpoint

Unable to connect EC2 instance via Session Manager

답변 추가

관련 콘텐츠