Having error when I am trying to execute the python file in Ec2 (Windows) instance using lambda trigger

Question

I am attempting to execute a Python file in an EC2 (Windows) instance through a lambda trigger function when a file is uploaded to an S3 bucket.

My Code

```
import boto3

def lambda_handler(event, context):
    # Specify the target region where the EC2 instance is located
    target_region = 'us-west-2b'  # Replace with the desired region code

# Initialize SSM client for the target region
    ssm_client = boto3.client('ssm', region_name=target_region)

# Specify the EC2 instance ID in the target region
    instance_id = '[ID]'  # Replace with the desired instance ID

directory = 'C:/Users/Administrator/Desktop/Automation'

# Specify the Python file you want to run on the EC2 instance
    python_file = 'first.py'
    
    command = f'cd {directory} && python {python_file}'

# Build the command to run the Python file
    # command = f'python {python_file}'

# Send the command to the specified instance
    response = ssm_client.send_command(
         InstanceIds=[instance_id],
         DocumentName='AWS-RunShellScript',
         Parameters={'commands': [command]}
     )

return {
        'statusCode': 200,
        'body': response
    }

```

But When I run the code It throws error

```
{
"errorMessage": "Could not connect to the endpoint URL: "https://ssm.us-west-2b.amazonaws.com/"",
"errorType": "EndpointConnectionError",
"stackTrace": [
"  File "/var/task/lambda_function.py", line 60, in lambda_handler
    Parameters={'commands': [command]}
",
"  File "/var/runtime/botocore/client.py", line 530, in _api_call
    return self._make_api_call(operation_name, kwargs)
",
"  File "/var/runtime/botocore/client.py", line 944, in _make_api_call
    operation_model, request_dict, request_context
",
"  File "/var/runtime/botocore/client.py", line 966, in _make_request
    return self._endpoint.make_request(operation_model, request_dict)
",
"  File "/var/runtime/botocore/endpoint.py", line 119, in make_request
    return self._send_request(request_dict, operation_model)
",
"  File "/var/runtime/botocore/endpoint.py", line 207, in _send_request
    exception,
",
"  File "/var/runtime/botocore/endpoint.py", line 361, in _needs_retry
    request_dict=request_dict,
",
"  File "/var/runtime/botocore/hooks.py", line 412, in emit
    return self._emitter.emit(aliased_event_name, **kwargs)
",
"  File "/var/runtime/botocore/hooks.py", line 256, in emit
    return self._emit(event_name, kwargs)
",
"  File "/var/runtime/botocore/hooks.py", line 239, in _emit
    response = handler(**kwargs)
",
"  File "/var/runtime/botocore/retryhandler.py"

```

Can Anyone help me to resolve this issue?

Answer

`target_region = 'us-west-2b'` is an AZ, you probably mean us-west-2.

Answer

Is your function attached to a VPC? If so, it doesn't have internet access by default so it can't access the SSM endpoint. You need to create an SSM VPC endpoint, create a NAT gateway, or remove the function from the VPC (It does not need to be there to invoke the python file).

Another option is to send the S3 notification to SQS and let the python file read messages from the queue and handle the event when it is received, without the Lambda function, without SSM.

Answer

If your lambda is connected to your VPC, it needs to be connected on a subnet which has a route to a NAT gateway or the SSM vpc endpoints need configuring.

Also ensure the security group on the Lambda function has the allowed outbound rules and any security groups on the VPC endpoints allow lambda to connect.

Having error when I am trying to execute the python file in Ec2 (Windows) instance using lambda trigger

Relevant content