Best practice rules for AWS Systems Manager
Trend Micro Cloud One™ – Conformity monitors AWS Systems Manager with the following rules:
- Check for SSM Managed Instances
Ensure that all EC2 instances are managed by AWS Systems Manager (SSM) service.
- SSM Parameter Encryption
Ensure that Amazon SSM parameters that hold sensitive configuration data are encrypted.
- SSM Session Length
Ensure that all active sessions in the Session manager do not exceed a set period of time.