Automated AMI creation using SSM
Recently AWS announced the induction of SNS topic to keep the community informed about Amazon AMI releases. Following solution integrates this feature with Amazon EC2 Systems Manager to provide Amazon native solution to build AMIs.
- The lambda function is subscribed to the official SNS topic
arn:aws:sns:us-east-1:137112412989:amazon-linux-ami-updates - The SSM automation document is triggered with the latest AMI when a new SNS notification is received
- Automation document launches a new EC2 instance and runs required configuration commands.
- Once the configuration process has completed, SSM stops the instance and creates a new AMI. When the AMI is ready, automation terminates the stopped instance.
- CloudWatch Event gets notified when the SSM has finished or failed the execution. It sends a message to the SNS topic which is subscribed by the notification email.
- Upload all cloudformation templates except
main.ymlandsns-subscription.ymlto the s3 bucket - Run
main.ymlin the desired region and provide s3 bucket name where cloudformations were uploaded - Run
sns-subscriptionin the us-east-1 region and specify lambda ARN fromSSMLambdaARNoutput created in step 2