Overview of SSM Parameter Store

Get an overview of how to use the SSM parameter store to manage configuration parameters.

We'll cover the following

Objectives
Steps

So far, we’ve used environment variables and hardcoded EC2 user data scripts to manage our configuration (e.g., database URL, database username, or database password).

Note: While this approach is easy to explain and easy to use, it’s not optimal regarding security because the configuration is stored in the EC2 user data for everyone with the right permissions to see.

Let’s migrate the configuration data to more secure service, SSM parameter store.

SSM parameter store stands for “systems manager parameter store” and is a built-in AWS feature to manage configuration data. It supports plaintext data (String and StringList) as well as encrypted data (SecureString), so we can use it for both configuration and passwords.

Note: There is an alternative AWS service called Secrets Manager, which offers a very similar functionality to the SSM parameter store. The Secrets Manager as a few additional features like auto-rotation of passwords, but it does not have a free tier.

Objectives

Get hands-on with 1200+ tech skills courses.

Introduction

Cloud Principles

Getting Started: Setup and First Steps

AWS Console and User Management

Amazon EC2: Where It All Began

Assessment 1/3: Cloud Basics and EC2

Hands-On: Let's Run Your Own Blog

Basic Networking and Security

Managed Services: Databases with RDS

Hands-On: Move the Database to RDS

Storage

Hands-On: Using AWS Storage Options

SSM Parameter Store

Assessment 2/3: Storage, Networking, and Databases

Load Balancing and Autoscaling

Hands-On: Scale Our Application

High Availability (HA) and Disaster Recovery (DR)

Hands-On: Make Your Website Highly Available

DNS, HTTPS, and Route 53

Bonus Hands-On: Going Live

Summary

Assessment 3/3: Load Balancing, High Availability, DNS & Routing

Feedback

Appendix

Overview of SSM Parameter Store

Objectives