Skip to main content

πŸ”Œ AWS EC2 Instance - object.extracts.yaml

  • Contextual name: πŸ”Œ object.extracts.yaml
  • ID: /types/CA10__CaAwsInstance__c/object.extracts.yaml
  • Located in: πŸ“• AWS EC2 Instance

Used In​

LogicPolicyFlags
🧠 prod.logic.yaml πŸŸ’πŸ“ AWS EC2 Instance Detailed Monitoring is not enabled 🟒🟒 x3
🧠 prod.logic.yaml πŸŸ’πŸ“ AWS EC2 Instance is idle 🟒🟒 x3
🧠 prod.logic.yaml πŸŸ’πŸ“ AWS EC2 Instance is overutilized 🟒🟒 x3
🧠 prod.logic.yaml πŸŸ’πŸ“ AWS EC2 Instance is underutilized 🟒🟒 x3
🧠 prod.logic.yaml πŸŸ’πŸ“ AWS EC2 Instance IAM role is not attached 🟒🟒 x3
🧠 prod.logic.yaml πŸŸ’πŸ“ AWS EC2 Instance IMDSv2 is not enabled 🟒🟒 x3
🧠 prod.logic.yaml πŸŸ’πŸ“ AWS EC2 Instance without a public IP address is in a public subnet 🟒🟒 x3

Content​

Open File

---
extracts:
# Values pending, applied. Not nullable. Can't have no access, retrieved via ec2:DescribeInstances
- name: "CA10__metadataState__c"
value:
FIELD:
path: "CA10__metadataState__c"
undeterminedIf:
isEmpty: "Corrupted data. EC2 Instances Metadata State cannot be empty."
# Values: optional, required. Not nullable. Can't have no access, retrieved via ec2:DescribeInstances
- name: "CA10__metadataHttpTokens__c"
value:
FIELD:
path: "CA10__metadataHttpTokens__c"
undeterminedIf:
isEmpty: "Corrupted data. EC2 Instances Metadata Http Token cannot be empty."
- name: CA10__iamInstanceProfileArn__c
value:
FIELD:
path: CA10__iamInstanceProfileArn__c
# Nullable. Can't have no access, retrieved via ec2:DescribeInstances
- name: "CA10__publicIpAddress__c"
value:
FIELD:
path: "CA10__publicIpAddress__c"
# Values: enabled, disabled. Not nullable. Can't have no access, retrieved via ec2:DescribeInstances
- name: "CA10__monitoringState__c"
value:
FIELD:
path: "CA10__monitoringState__c"
undeterminedIf:
isEmpty: "Corrupted data. EC2 Instances Detailed Monitoring State cannot be empty."
# Values: pending | running | shutting-down | terminated | stopping | stopped. Not nullable.
- name: "CA10__stateName__c"
value:
FIELD:
path: "CA10__stateName__c"
undeterminedIf:
noAccessDelegate:
path: "CA10__stateName__c"
currentStateMessage: "Unable to determine EC2 Instances State Name. Possible permission issue with ec2:DescribeInstanceStatus"
# Number of Days. Nullable. Can't have no access, retrieved via ec2:DescribeInstances
- name: "CA10__currentRunningTime__c"
value:
FIELD:
path: "CA10__currentRunningTime__c"
# Nullable.
- name: "CA10__averageCpuTwoWeeks__c"
value:
FIELD:
path: "CA10__averageCpuTwoWeeks__c"
# Nullable.
- name: "CA10__maxCpuTwoWeeks__c"
value:
FIELD:
path: "CA10__maxCpuTwoWeeks__c"
# Nullable.
- name: "CA10__sumTwoWeekNetworkOutMb__c"
value:
FIELD:
path: "CA10__sumTwoWeekNetworkOutMb__c"
# Nullable.
- name: "CA10__sumTwoWeekNetworkInMb__c"
value:
FIELD:
path: "CA10__sumTwoWeekNetworkInMb__c"