You create IAM Role with AmazonSSMManagedInstanceCore Policy which is attached with the EC2 instances launched. It makes the instances managed instances.
-
Goto the IAM Management console. Click on the Roles menu in the left and then click on the Create role button.
-
On the next screen, select EC2 as the service and click on the Next: Permissions button.
-
On the next screen, select AmazonSSMManagedInstanceCore as the policy and click on the Next: Tags button.
-
On the next screen, click on the Next: Review button.
-
On the next screen, type in dojo-ssm-role for the Role name and click on the Create role button.
-
The role is created in no time. You configure VPC Endpoints in the next step.