Determine if the EC2 instances provisioned in your AWS account have the desired instance type(s) established by your organization based on the workload deployed. Cloud Conformity provides you the capability to define the desired EC2 instance type(s) based on your workload requirements upon enabling this rule (the rule is disabled by default).
This rule can help you with the following compliance standards:
This rule can help you work with the AWS Well-Architected Framework
This rule resolution is part of the Cloud Conformity Security & Compliance tool for AWS
Setting limits for the type(s) of EC2 instances provisioned in your AWS account will help you to manage better your cloud compute power, address internal compliance requirements and prevent unexpected charges on your AWS bill.
To determine if the EC2 instances launched in your AWS account have all the desired instance type(s), perform the following:
Remediation / Resolution
To limit the EC2 instances that will be launched in your account to the desired instance type(s), perform the following:Note: Raising a support case to request the necessary limitation using the AWS API via Command Line Interface (CLI) is not currently supported.
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
EC2 Desired Instance Type
Risk level: Medium