💼 5.7 Ensure that the EC2 Metadata Service only allows IMDSv2 (Automated)
- ID:
/frameworks/cis-aws-v4.0.1/05/07
Description
When enabling the Metadata Service on AWS EC2 instances, users have the option of using either Instance Metadata Service Version 1 (IMDSv1; a request/response method) or Instance Metadata Service Version 2 (IMDSv2; a session-oriented method).
Similar
- Sections
/frameworks/cis-aws-v5.0.0/05/07/frameworks/cis-aws-v4.0.0/05/07
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 CIS AWS v4.0.0 → 💼 5.7 Ensure that the EC2 Metadata Service only allows IMDSv2 (Automated) | 1 | no data | |||
| 💼 CIS AWS v5.0.0 → 💼 5.7 Ensure that the EC2 Metadata Service only allows IMDSv2 (Automated) | 1 | no data |
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 CIS AWS v4.0.0 → 💼 5.7 Ensure that the EC2 Metadata Service only allows IMDSv2 (Automated) | 1 | no data | |||
| 💼 CIS AWS v5.0.0 → 💼 5.7 Ensure that the EC2 Metadata Service only allows IMDSv2 (Automated) | 1 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (1)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS EC2 Instance IMDSv2 is not enabled🟢 | 1 | 🟢 x6 | no data |