🛡️ AWS RDS Instance count has reach the service quota🟢

• Contextual name: 🛡️ Instance count has reach the service quota🟢
• ID: /ce/ca/aws/rds/instance-service-quota
• Tags:
  • 🟢 Policy with categories
  • 🟢 Policy with type
  • 🟢 Production policy
• Policy Type: COMPLIANCE_POLICY
• Policy Categories: RELIABILITY

Logic

• 🧠 prod.logic.yaml🟢
  • 📗 AWS Account
  • 🔌 AWS Account Limits - object.extracts.yaml
  • 🧪 test-data.json

Similar Policies

• Cloud Conformity: RDS Instance Counts

Description

Open File

Description

This policy identifies AWS Accounts where service quotas for RDS Instances exceeds the service limit for your organization for the deployed RDS workloads. By default, CloudAware enforces a threshold of 90% of the maximum allowed number of provisioned database instances.

Rationale

AWS imposes service quotas on the number of resources you can provision to protect you from unintentional spend and to ensure service availability. If your account hits the RDS instance limit, automated scaling activities, disaster recovery processes, or new deployments will fail. Proactively monitoring this count ensures you can request quota increases before business operations are impacted.

Audit

This policy flags an AWS Account as INCOMPLIANT if the service quota for AWS RDS Instances reaches or exceeds the defined limit.

An AWS Account is marked as UNDETERMINED when AWS account service quota information is unavailable.

References

1. https://docs.aws.amazon.com/general/latest/gr/aws_service_limits.html
2. https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_Limits.html

Remediation

Open File

Remediation

Request a Service Quota Increase

If the number of Amazon RDS instances is approaching or has reached the configured limit, request an increase to the applicable AWS service quota.

From AWS Console

1. Sign in to the AWS Management Console and open the Service Quotas console.

2. In the navigation pane, select AWS services.

3. Choose Amazon RDS from the list.

4. Identify the quota you want to increase. If the quota is adjustable, you may request an increase at one of the following levels, depending on the value shown in the Adjustability column:

   • Account-level – Request an increase for account-wide quotas (for example, total RDS instances per Region).
   • Resource-level – Request an increase for quotas that apply to specific resources, where applicable.

5. Select the quota and choose Request increase at the appropriate level.

6. Enter the new quota value. The requested value must be greater than the current quota.

7. Choose Request to submit the increase request.

Reviewing Request Status

... see more

policy.yaml

Open File

Linked Framework Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 AWS Well-Architected → 💼 REL01-BP05 Automate quota management			1		no data
💼 Cloudaware Framework → 💼 System Configuration			54		no data