Manually Install the Privileged Session Manager

This topic describes how to install Privileged Session Manager (PSM) and Privileged Session Manager for SSH ( PSM for SSH) on AWS.

Security guidelines

When installing and PSM for SSH on AWS, use the following additional security guidelines, which explain how to increase security in your PSM and PSM for SSH environment on AWS:

In your firewall, add an outbound rule for the PSM servers that blocks all traffic to the remote 169.254.169.254 IP address. This address exposes the meta-data of the EC2 instance when accessing it from within the server and, therefore, must be blocked.
Do NOT save any kind of AWS security credentials or certificates locally on the PSM server.

Installation