Ensure that all active Amazon EC2 Reserved Instance (RI) purchases are reviewed every 7 days to make sure that no unwanted RI purchase has been placed recently.
This rule can help you with the following compliance standards:
For further details on compliance standards supported by Conformity, see here.
This rule resolution is part of the Conformity Security & Compliance tool for AWS.
By checking your EC2 RI purchases on a regular basis you can detect and cancel any unwanted purchases placed within your AWS account and avoid unexpected charges on your AWS bill.
Note: You can change the default threshold value (7 days) for the review time frame within the rule settings available on the Cloud Conformity console.
To identify the EC2 Reserved Instance purchases placed recently within your AWS account for review purposes, perform the following:
Remediation / Resolution
Case A: Check the AWS Cloudtrail service logs (if Cloudtrail is enabled) from the date when the EC2 RI purchase request was placed to determine the request origin and context. To find and analyze the necessary API logging data, perform the following actions:
Case B: To mitigate unwanted EC2 Reserved Instance purchase requests you can contact Amazon Web Services and ask for RI purchases cancellation. To create the necessary case through the AWS Support Center, perform the following:Note: Requesting Amazon to cancel your unwanted EC2 RI purchase requests using AWS Management Console or AWS API via Command Line Interface (CLI) is not currently supported.
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
EC2 Reserved Instance Recent Purchases
Risk level: Low