How To Create Parameter Store In AWS SSM

How To Create Parameter Store In AWS SSM

How To Create Parameter Store In AWS SSM

Hello Everyone

Welcome to CloudAffaire and this is Debjeet.

In the last blog post, we have discussed AWS SSM Session Manager and how to connect to an AWS EC2 instance without a key pair using SSM Session Manager.

https://cloudaffaire.com/how-to-connect-to-an-aws-ec2-instance-without-key-pair/

In this blog post, we will discuss how to create a parameter store in AWS System Manager (SSM).

What Is Parameter Store:

AWS Systems Manager Parameter Store provides secure, hierarchical storage for configuration data management and secrets management. You can store data such as passwords, database strings, Amazon Machine Image (AMI) IDs, and license codes as parameter values. You can store values as plain text or encrypted data.

What Is Parameter In Parameter Store:

A Parameter Store parameter is any piece of data that is saved in Parameter Store, such as a block of text, a list of names, a password, an Amazon Machine Image (AMI) ID, a license key, and so on. You can centrally and securely reference this data in your scripts, commands, and SSM documents. Parameter Store provides support for three types of parameters:

  • String: String parameters consist of any block of text you enter, for example aws or gcp.
  • StringList: StringList parameters contain a comma-separated list of values, for example aws,azure,gcp.
  • SecureString: SecureString parameter is any sensitive data that needs to be stored and referenced in a secure manner, for example password or license keys.

Parameter Naming Convention And Restrictions:

  • Case sensitivity: Parameter names are case sensitive.
  • Spaces: Parameter names can’t include spaces.
  • Valid characters: Parameter names can consist of the following symbols and letters only: a-zA-Z0-9_.-/
  • Valid AMI format: When you choose aws:ec2:image as the data type for a String parameter, the ID you enter must validate for the AMI ID format ami-12345abcdeEXAMPLE.
  • Fully qualified: When you create or reference a parameter in a hierarchy, you must include a leading forward slash character (/) . When you reference a parameter that is part of a hierarchy, you must specify the entire hierarchy path including the initial slash (/).
  • Length: The maximum length for a parameter name, including the full content of the parameter Amazon Resource Name (ARN), is 1011 characters.
  • Prefixes: A parameter name cannot be prefixed with “aws” or “ssm” (case-insensitive).
  • Uniqueness: A parameter name must be unique within an AWS Region.
  • Hierarchy depth: If you specify a parameter hierarchy, the hierarchy can have a maximum depth of fifteen levels.

Features Of Parameter Store:

  • Secure And Hierarchical Storage: You can store configuration data or secrets in Parameter store.
  • Free: You can use the standard tier of parameter store without any additional cost.
  • Change notification: You can set up notifications or trigger actions based on Parameter Store events.
  • Organize and control access: You can tag your parameters individually to help you quickly identify one or more parameters based on the tags you’ve assigned to them.
  • Label versions: You can associate an alias for versions of your parameter by creating labels that can help you remember the purpose of a parameter version when there are multiple versions.
  • Data validation: You can create parameters that point to an Amazon EC2 instance and Parameter Store will validate these parameters to ensure that it references the expected resource type, that the resource exists, and that the customer has permission to use the resource.
  • Reference secrets: Parameter Store is integrated with AWS Secrets Manager so that you can retrieve Secrets Manager secrets.
  • Accessible from other AWS services: You can use Parameter Store parameters with other Systems Manager capabilities and AWS services to retrieve secrets and configuration data from a central store.

How To Create Parameter Store In AWS SSM

Requirements:

AWS CLI installed and configured. You can follow the below blog post to install and configure AWS CLI.

https://cloudaffaire.com/how-to-install-aws-cli/

https://cloudaffaire.com/how-to-configure-aws-cli/

Step 1: Create a new parameter of different types in SSM parameter store.

Step 2: List all available parameters in a single AWS region.

Step 3: Get parameter details.

Step 4: Update an existing parameter value.

Step 5: Create a version label for your changed parameters.

Step 6: Get version change history for a parameter.

Step 7: Cleanup.

Hope you have enjoyed this blog post, to get more details on AWS SSM, please refer below AWS documentation

https://docs.aws.amazon.com/systems-manager/index.html

 

Leave a Reply

Close Menu