https://ferkakta.dev/tags/ssm/Recent content in Ssm on ferkakta.devHugoen-USCopyright fizz.Thu, 12 Feb 2026 10:00:00 -0600https://ferkakta.dev/workspaces-ssm-cloudwatch-bootstrap/Thu, 12 Feb 2026 10:00:00 -0600https://ferkakta.dev/workspaces-ssm-cloudwatch-bootstrap/<p>I spent an afternoon arguing with Windows about whether I was allowed to be root on a machine I created. Six hours and six layers of undocumented workarounds later, I got CMMC-compliant audit logging on a desktop that doesn&rsquo;t know it exists.</p> <h2 id="the-problem">The problem</h2> <p>WorkSpaces don&rsquo;t show up in AWS Systems Manager. They&rsquo;re not EC2 instances — no instance profile, no metadata endpoint, no identity. SSM Agent is pre-installed but thinks it&rsquo;s nobody. CloudWatch Agent has no credentials and doesn&rsquo;t know what region it&rsquo;s in.</p>