Amazon EC2 Instance Connect (EIC) Endpoints provide a secure and seamless option for connecting to private EC2 instances. EIC endpoints can be configured using identity-based and network-based access controls, which provides more flexibility and control over the security of your VPC resources. These endpoints can also reduce administrative overhead and improve security by removing the need for a bastion host.

In this lab, you will replace a bastion host with an Amazon EC2 Instance Connect Endpoint to access a private EC2 instance. You will connect to the private instance using the AWS Management Console and the AWS CLI.

Learning objectives

Upon completion of this intermediate-level lab, you will be able to:

• Configure an Amazon EC2 Instance Connect Endpoint
• Access a private instance using an EC2 Instance Connect Endpoint

Intended audience

• Cloud Architects
• DevOps Engineers
• Software Engineers

Prerequisites

Familiarity with the following will be beneficial but is not required:

• Amazon Virtual Private Cloud (VPC)
• Amazon Elastic Compute Cloud (EC2)

The following content can be used to fulfill the prerequisites:

• Working with AWS Networking and Amazon VPC - Bastion Hosts
• Introduction to Virtual Private Cloud (VPC)