AWS Config Rule: EC2 Managed Instance Association Compliance Status

EC2_MANAGEDINSTANCE_ASSOCIATION_COMPLIANCE_STATUS_CHECK

Fernando Honig

Last Update há 7 meses

Description: Checks whether the compliance status of the AWS Systems Manager association compliance is COMPLIANT or NON_COMPLIANT after the association execution on the instance. The rule is compliant if the field status is COMPLIANT.


Trigger type: Configuration changes


AWS Region: All supported AWS regions except Asia Pacific (Jakarta), Africa (Cape Town), Asia Pacific (Hyderabad), Asia Pacific (Osaka), Asia Pacific (Melbourne), Europe (Milan), Israel (Tel Aviv), Canada West (Calgary), Europe (Spain), Europe (Zurich) Region


How to Resolve Manually

To resolve this manually, you can run an AWS Systems Manager Command.


Go to Systems Manager in your AWS Management Console, and select Run Command in your left menu under Node Management.


Search for AWS-RefreshAssociation and indicate the Targets. Writing the command output to an Amazon S3 bucket is optional. When done, click Run.


How to Resolve with StackZone

You can resolve this with StackZone by enabling the EC2 Association Compliance Remediation. 


Find this under Provisioning -> Baseline Services -> AWS Config Rules Regional -> Amazon EC2 and enable EC2 Instance Association Compliance Status Remediation


Once enabled, all your current and new instances created in every account in all enabled regions will be checked and remediated automatically.  


Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

1 out of 1 liked this article

Still need help? Message Us