AWS Config Rule: EC2 Managed Instance Association Compliance Status
EC2_MANAGEDINSTANCE_ASSOCIATION_COMPLIANCE_STATUS_CHECK
Fernando Honig
Last Update há 7 meses
Description: Checks whether the compliance status of the AWS Systems Manager association compliance is COMPLIANT or NON_COMPLIANT after the association execution on the instance. The rule is compliant if the field status is COMPLIANT.
Trigger type: Configuration changes
AWS Region: All supported AWS regions except Asia Pacific (Jakarta), Africa (Cape Town), Asia Pacific (Hyderabad), Asia Pacific (Osaka), Asia Pacific (Melbourne), Europe (Milan), Israel (Tel Aviv), Canada West (Calgary), Europe (Spain), Europe (Zurich) Region
How to Resolve Manually
To resolve this manually, you can run an AWS Systems Manager Command.
Go to Systems Manager in your AWS Management Console, and select Run Command in your left menu under Node Management.
Search for AWS-RefreshAssociation and indicate the Targets. Writing the command output to an Amazon S3 bucket is optional. When done, click Run.
How to Resolve with StackZone
You can resolve this with StackZone by enabling the EC2 Association Compliance Remediation.
Find this under Provisioning -> Baseline Services -> AWS Config Rules Regional -> Amazon EC2 and enable EC2 Instance Association Compliance Status Remediation
Once enabled, all your current and new instances created in every account in all enabled regions will be checked and remediated automatically.
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here