Privileged Access Security
AWS Systems Manager Session Manager
Secure shell/session access with centralized logging and controlled privileged access.
AWS
Service information
AWS Systems Manager Session ManagerShortname: Session Manager
Huawei equivalent shortnames: CBH
Keywords: privileged access, bastion, audit, security
Differences vs Huawei
- Agent and session brokering model differ.
- Command/session audit controls differ.
Migration to Huawei
- Map detection/prevention policy scope, enforcement points, and response workflows. For AWS AWS Systems Manager Session Manager, the direct Huawei equivalence layer is CBH; validate feature-by-feature parity for control plane, data plane, and operational behavior before cutover.
- Use a composed Huawei migration pattern where needed: CBH + IAM. Treat CBH as the core equivalent capability and use the additional services to cover integration, security, observability, and governance gaps.
- Pricing model difference: AWS usually bills protected resources, rule/policy count, request/event volume, or scan volume; Huawei usually bills WAF/CFW/DEW/DBSS/DSC billing by edition, protected assets, requests/events, or scans. Recalculate TCO with peak load, request volume, retention period, and cross-region/interconnect traffic before production migration.
Huawei Cloud
Huawei equivalent service
Cloud Bastion HostShortname: CBH
General function: Privileged Access Security
Privileged access and operation audit bastion service.
Keywords: bastion, privileged access, audit