desired-instance-tenancy - AWS Config

desired-instance-tenancy

Checks EC2 instances for a 'tenancy' value. Also checks if AMI IDs are specified to be launched from those AMIs or if Host IDs are launched on those Dedicated Hosts. The rule is COMPLIANT if the instance matches a host and an AMI, if specified, in a list.

Identifier: DESIRED_INSTANCE_TENANCY

Resource Types: AWS::EC2::Instance

Trigger type: Configuration changes

AWS Region: All supported AWS regions

Parameters:

tenancy
Type: String

Desired tenancy of the instances. Valid values are DEDICATED, HOST and DEFAULT.

imageId (Optional)
Type: CSV

The rule evaluates instances launched only from AMIs with the specified IDs. Separate multiple AMI IDs with commas.

hostId (Optional)
Type: CSV

The IDs of the EC2 Dedicated Hosts on which the instances are meant to be launched. Separate multiple Host IDs with commas.

AWS CloudFormation template

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.