Step 8: (Optional) Set up integrations with other Amazon Web Services - Amazon Systems Manager
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Step 8: (Optional) Set up integrations with other Amazon Web Services

Amazon Systems Manager integrates with many Amazon Web Services. In most cases, you set up an integration after you decide to incorporate the service into your Systems Manager operations. For example:


For a complete list of Amazon Web Services that integrate with Systems Manager, see Integration with Amazon services.

You can use some Amazon Web Services immediately to compile log data for later troubleshooting and analysis. You can also use Amazon Web Services to monitor and quickly respond to changes in your Systems Manager environment. Therefore, we recommend that you set up the following resources as part of your initial Systems Manager setup process:

Amazon EventBridge and Amazon Simple Notification Service – Using EventBridge, you can set up rules to detect when changes happen to Amazon resources that you specify. You can configure EventBridge to log status execution changes of the commands that users in your account send using Systems Manager. You can create a rule to detect when a user in your organization starts or stops a session in Session Manager. You can also configure an EventBridge event to invoke other actions in your Amazon environment. For more information, see the following topics:

Amazon S3

Run Command command output in the Systems Manager console is truncated after 48,000 characters. To access complete command output logs, you can store Systems Manager output in an Amazon Simple Storage Service (Amazon S3) bucket. Then, you can use this output later for auditing or troubleshooting. You specify whether to save command output to an S3 bucket each time you run a command. You can also create an Amazon S3 key prefix (a subfolder) to help you organize the log output. For more information, see Create a bucket in the Amazon Simple Storage Service User Guide.

Amazon CloudWatch Logs

As an alternative to storing command output in an S3 bucket, you can send output to an Amazon CloudWatch Logs log group. If you specify CloudWatch Logs as the output target, Run Command periodically sends all command output and error logs to CloudWatch Logs. You can monitor output logs in near real-time, search for specific phrases, values, or patterns, and create alarms based on the search. For more information, see Configuring Amazon CloudWatch Logs for Run Command.