🚀Launch Week 06, October 21st - 25th, 2024🚀
Powerpipe Hub 
Hub
Mods
turbot/aws_compliance
Overview
30Dashboards
1229Controls
583Queries
4Variables
GitHub

Control: 2.11 Ensure instances stopped for over 90 days are removed

Description

Enable this rule to help with the baseline configuration of Amazon Elastic Compute Cloud (Amazon EC2) instances by checking whether Amazon EC2 instances have been stopped for more than the allowed number of days, according to your organization’s standards.

Remediation

From the Console:

  1. Login to the EC2 console at https://console.aws.amazon.com/ec2/.
  2. In the left pane, click Instances, click Instances.
  3. Select the Instance for that hasn't been used for over 90 days.
  4. Under the Details tab.
  5. Click Instance state, click Terminate instance.
  6. Click Terminate.
  7. Repeat steps no. 3 – 6 the other instances with a launch date equal to or over 90 days.

Repeat all steps for the other regions.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.cis_compute_service_v100_2_11

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.cis_compute_service_v100_2_11 --share

SQL

This control uses a named query:

ec2_stopped_instance_90_days

Tags

category = Compliance
cis = true
cis_item_id = 2.11
cis_level = 1
cis_section_id = 2
cis_type = manual
cis_version = v1.0.0
plugin = aws
service = AWS/EC2