
Instance interactive access
Generally, we create Linux instances allowing port 22 to access via SSH. Using AWS Systems Manager Session Manager instead of directly accessing via SSH we don't need inbound rules to open ports in Security Groups. There are no inbound rules. Normally we’d require tcp 22 to ssh into this instance. If we go back to Systems Manager, we can go to instance actions, start a session, and..what’s gonna happen? We are connected to our instance! We strongly recommend using AWS Systems

Using SSM Parameter Store
Some configurations can be considered private and high risk. Data such as Database Passwords and other valuable information can be safely stored in the SSM Parameter Store service. The service offers the possibility of storing the data that we consider to be “secret”, to later be consumed by our applications. Some of its features are: Serverless, scalable Version tracking of the configurations and secrets Encryption with KMS (optional) Notifications with CloudWatch Events Con