Ensure that detailed monitoring for EC2 instances is enabled

Enabling monitoring provides comprehensive performance metrics that helps ensure your business-critical applications and services hosted on the EC2 platform are performing well at all times.

Risk Level: Low
Cloud Entity: Amazon EC2 Instance
CloudGuard Rule ID: D9.CFT.OPE.12
Covered by Spectral: Yes
Category: Compute

GSL LOGIC

AWS_EC2_Instance should have Monitoring=true

REMEDIATION

From CFT
Set AWS::EC2::Instance Monitoring property to true

References

  1. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html#cfn-ec2-instance-monitoring
  2. https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/monitoring_ec2.html

Amazon EC2 Instance

Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale cloud computing easier for developers.

Compliance Frameworks

  • AWS CloudFormation ruleset