Disable copy and paste options in AWS SSM

0

Hi, We need to restrict any user cant copy from the ssm command terminal and paste into ssm command. How to avoid those feature in unix (none of the users) perform those activity.

Thanks

  • please accept the answer if it was useful

gefragt vor 6 Monaten380 Aufrufe
1 Antwort
1

Unfortunately, there is no built-in option in AWS SSM to directly disable copy and paste operations. However, you can achieve a higher level of control and restriction using IAM.

Ensure that only authorized users have access to start SSM sessions. Define an IAM policy that limits which users can access SSM sessions.

Example IAM Policy to Restrict SSM Session for instances with tag Environment: Production

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Deny",
            "Action": [
                "ssm:SendCommand",
                "ssm:StartSession",
                "ssm:ResumeSession",
                "ssm:TerminateSession"
            ],
            "Resource": "*",
            "Condition": {
                "StringEquals": {
                    "ssm:ResourceTag/Environment": "Production"
                }
            }
        }
    ]
}
profile picture
EXPERTE
beantwortet vor 6 Monaten
profile picture
EXPERTE
überprüft vor 5 Monaten

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen