Adding Runtime Monitoring to existing Amazon ECS Fargate tasks - Amazon Elastic Container Service

Adding Runtime Monitoring to existing Amazon ECS Fargate tasks

When you turn on Runtime Monitoring, all new standalone tasks, and new service deployments in the cluster are protected automatically. In order to preserve the immutability constraint, existing tasks are not affected.

Prerequisites

  1. Turn on Runtime Monitoring. For more information, see Turning on Runtime Monitoring for Amazon ECS.

  2. Fargate tasks must use a task execution role. This role grants the tasks permission to retrieve, update, and manage the GuardDuty security agent on your behalf. For more information see Amazon ECS task execution IAM role.

Procedure