Identify and delete any unused Amazon AWS Elastic Network Interfaces in order to adhere to best practices and to avoid reaching the service limit. An AWS Elastic Network Interface (ENI) is pronounced unused when is not attached anymore to an EC2 instance.
This rule can help you with the following compliance standards:
- NIST4
For further details on compliance standards supported by Conformity, see here.
This rule can help you work with the AWS Well-Architected Framework.
This rule resolution is part of the Conformity Security & Compliance tool for AWS.
efficiency
As good practice, unused (detached) Amazon Elastic Network Interfaces should be removed from your account because keeping a lot of unused ENIs can exhaust the resource limit and eventually prevent the launching of new EC2 instances.
Audit
To identify any unused Elastic Network Interfaces currently available within your AWS account, perform the following:
Remediation / Resolution
To remove any unused Amazon Elastic Network Interfaces (ENIs) available within your AWS account, perform the following:
References
- AWS Documentation
- Network and Security
- Elastic Network Interfaces
- AWS Service Limits
- AWS Command Line Interface (CLI) Documentation
- ec2
- describe-network-interfaces
- delete-network-interface
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.

You are auditing:
Unused Elastic Network Interfaces
Risk level: Low