Ensure that all the active Amazon EC2 Reserved Instance (RI) purchases are reviewed every 7 days to make sure that no unwanted RI purchase has been placed recently.
This rule can help you with the following compliance standards:
- AWAF
For further details on compliance standards supported by Conformity, see here.
This rule resolution is part of the Conformity Security & Compliance tool for AWS.
optimisation
By checking your Amazon EC2 Reserved Instance purchases on a regular basis you can detect and cancel any unwanted purchases placed within your AWS cloud account and avoid unexpected charges on your AWS bill.
Note: You can change the default threshold value (7 days) for the review time frame within the conformity rule settings, using the Trend Cloud One™ – Conformity console.
Audit
To identify the Reserved Instance purchases placed recently within your AWS cloud account for review purposes, perform the following operations:
Remediation / Resolution
Case A: Check your Amazon CloudTrail logs (if Cloudtrail service is enabled) from the date when the unwanted purchase request was placed to determine the request origin and context. To find and analyze the necessary AWS API logging data, perform the following actions:
Case B: To mitigate unwanted Amazon EC2 reservation purchases, you can contact Amazon Web Services and ask for purchase cancellation. To create the necessary case through the AWS Support Center, perform the following:
Note: Requesting AWS to cancel your unwanted reservation purchases using the AWS Command Line Interface (AWS CLI) is not currently supported.References
- AWS Documentation
- How Reserved Instances Work
- Billing Benefits and Payment Options
- AWS Command Line Interface (CLI) Documentation
- ec2
- describe-reserved-instances
- cloudtrail
- describe-trails
- s3api
- list-objects
- get-object