Amazon EC2 Instance Connect with SSM (Highly Available Bastion)

How can we move away from traditional SSH based jump hosts to highly available SSM based jump hosts - that also without the hassle of using SSH keys and how can we hide the complexity of remembering commands by introducing/writing the cli on top of it.

How can we move away from traditional SSH based jump hosts to highly available SSM based jump hosts - that also without the hassle of using SSH keys and how can we hide the complexity of remembering commands by introducing/writing the cli on top of it.

• Creating the infra, what are the important resources required?
• How can we use the minimal OS, to avoid the attack surface - possible to use the Bottlerocket? Some introduction of Bottlerocket OS!
• Writing the custom automation can help us hide the complexity of remembering the commands and how clients/customer can use it seamlessly?

Terraform will be used. Golang is used for writing the cli.