v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Powerpipe Hub 
Hub
Mods
turbot/aws_compliance
Overview
32Dashboards
1295Controls
585Queries
4Variables
GitHub

Control: AWS EC2 launch templates should not assign public IPs to network interfaces

Description

This control checks if AWS EC2 launch templates are configured to assign public IP addresses to network interfaces upon launch. The control fails if an EC2 launch template is configured to assign a public IP address to network interfaces or if there is at least one network interface that has a public IP address.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.ec2_launch_template_not_publicly_accessible

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.ec2_launch_template_not_publicly_accessible --share

SQL

This control uses a named query:

ec2_launch_template_not_publicly_accessible

Tags

category = Compliance
plugin = aws
service = AWS/EC2